APC Network Management Card AP9617 Guía de usuario descargar pdf (Pagina 162)

®®

USER’S GUIDE

network management card

155

Choosing a method for your system

Using the Secure Socket Layer (SSL) protocol, you can choose any of the

following methods for using digital certificates.

Method 1: Use APC’s default certificate. When you enable SSL, you

must reboot the Management Card. During rebooting, if no server certificate

exists on the Management Card, the Management Card generates a default

server certificate that is signed by APC but that you cannot configure.

This method has the following advantages and disadvantages:

• Advantages:

– Before they are transmitted, the user name and password for

Management Card access and all data to and from the

Management Card are encrypted.

– You can use this default server certificate to provide encryption-

based security while you are setting up either of the other two

digital certificate options, or you can continue to use it for the

benefits of encryption that SSL provides.

• Disadvantages:

– The Management Card takes up to 5 minutes to create this

certificate, and the Web interface is not available during that time.

(This delay occurs the first time you log on after you enable SSL.)

– This method does not include the browser-based authentication

provided by a CA certificate (a certificate signed by a Certificate

Authority) as Methods 2 and 3 provide. There is no CA Certificate

cached in the browser. Therefore, whenever you log on to the

Management Card, the browser generates a security alert,

1 2 ... 157 158 159 160 161 162 163 164 165 166 167 ... 189 190

Sin comentarios

APC Network Management Card AP9617 Guía de usuario Pagina 162