Skip to main content

6.4 Configuring the HTTPS Service


6.4 Configuring the HTTPS Service
The HTTPS service settings are intended for use of XSCF Web with a connection to the XSCF-LAN and for use of a Web browser window. Use the settings described here to enable/disable and use HTTPS. HTTPS is disabled by default in these systems. The XSCF Web console can be a secure console by enabling HTTPS.
Note - We recommend enabling HTTPS for the maintenance work of collecting an XSCF log and updating the XCP firmware.
Note - The self-signed certificate expires after 10 years. If the Web server certificate has expired or you are changing the Web server certificate, configure the HTTPS service again.
  1. Execute the showhttps command to display the HTTPS service settings.
    The following example displays an HTTPS service setting. The factory default setting is "disabled".
XSCF> showhttps
HTTPS status: disabled
  1. Execute the sethttps command to configure HTTPS.
    The following example enables the HTTPS service.
XSCF> sethttps -c enable
The web serverkey or web server certificate which has been signed by an external certification authority does not exist.
Created self-signed certificate for HTTPS service.Continue? [y|n] :y
  1. If there is neither a Web server secret key nor a self-signed Web server certificate, the command with "enable" specified automatically configures self-signing, generates a Web server secret key, creates a Web server certificate, and enables HTTPS to complete this work at one time.
  1. Execute the showhttps command, and confirm that the HTTPS setting has changed to "enabled".
XSCF> showhttps
HTTPS status: enabled
Server key: installed in Apr 24 12:34:56 JST 2016
CA key: installed in Apr 24 12:00:34 JST 2016
CA cert: installed in Apr 24 12:00:34 JST 2016
CSR:
-----BEGIN CERTIFICATE REQUEST-----
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-----END CERTIFICATE REQUEST-----