Configuring Administration Settings : Configuring Security Settings : Configuring Web Settings
  
Configuring Web Settings
You can configure web user interface settings in the Web Settings page.
You can also manage SSL certificates used by the SCC in the Web Settings page:
•  View certificate details.
•  View certificate in PEM format.
•  Replace a signed certificate by importing a certificate and private key or generating a self-signed certificate and new private key.
•  Generate a certificate signing request (CSR).
To configure web settings
1. Choose Administration > Security: Web Settings to display the Web Settings page.
Figure: Configuring Web Settings
2. Under Web Settings, complete the configuration as described in this table.
Control
Description
Default Web Login ID
Specify the username that appears in the authentication page. The default value is admin.
Web Inactivity Timeout
Specify the number of idle minutes before time-out. The default value is 15. A value of 0 disables time-out.
Allow Session Timeouts When Viewing Auto-Refreshing Pages
By default, session time-out is enabled, which stops the automatic updating of the report pages when the session times out. Clear the Allow box to disable the session time-out, remain logged-in indefinitely, and automatically refresh the report pages.
Note: Disabling this feature poses a security risk.
Apply
Applies your settings to the running configuration.
3. Click Save to Disk to save your settings permanently.
To manage web certificates
1. Choose Administration > Security: Web Settings to display the Web Settings page. The identity certificate details are displayed.
2. Complete the configuration as described in this table.
 
Control
Description
Issued To/Issued By
Common Name - Specifies the common name of the certificate authority.
Email - Specifies the organization email.
Organization - Specifies the organization name (for example, the company).
Locality - Specifies the city.
State - Specifies the state.
Country - Specifies the country.
Validity
Issued On - Specifies the date the certificate was issued.
Expires On - Specifies the date the certificate expires.
Fingerprint
Specifies the SSL fingerprint.
Key
Type - Specifies the key type.
Size - Specifies the sizes in bytes.
3. To view the certificate in PEM format, under Web Certificate, select the PEM tab. The certificate appears in PEM format.
4. To replace an existing certificate, under Web Certificate, select the Replace tab, and complete the configuration as described in this table.
Control
Description
Import Certificate and Private Key
Imports the certificate and key.
The page displays controls for browsing to and uploading the certificate and key files. Or, you can use the text box to copy and paste a PEM file.
The private key is required regardless of whether you are adding or updating the certificate.
Certificate
Select the action.
•  Upload - Browse to the local file in PKCS-12, PEM, or DER formats.
•  Paste it here (PEM) - Copy and then paste the contents of a PEM file.
Private Key
Select the private key origin.
•  The Private Key is in a separate file (see below) - you can either upload it or copy and paste it.
•  This file includes the Certificate and Private Key
•  The Private Key for this Certificate was created with a CSR generated on this appliance.
Separate Private Key
Select the action:
•  Upload (PEM or DER formats) - Browse to the local file in PEM or DER formats.
•  Paste it here (PEM only) - Paste the contents of a PEM file.
Decryption Password
Specify the decryption password, if necessary. Passwords are required for PKCS-12 files, optional for PEM files, and never needed for DER files.
Import Certificate and Key
Imports the certificate and key.
Generate Self-Signed Certificate and New Private Key
Select to generate a new private key and self-signed public certificate.
 
Organization Name - Specify the organization name (for example, the company).
 
Organization Unit Name - Specify the organization unit name (for example, the section or department).
 
Locality - Specify the city.
 
State (no abbreviations) - Specify the state.
 
Country (2-letter code) - Specify the country (2-letter code only).
 
Email Address - Specify the email address of the contact person.
 
Validity Period (Days) - Specify how many days the certificate is valid. The default value is 730.
Private Key
•  Cipher Bits - Select the key length from the drop-down list. The default value is 1024.
Generate Certificate and Key
Generates a private key and CSR.
Apply
Applies your settings to the running configuration.
5. To generate a CSR, under Web Certificate, select the Generate CSR tab and complete the configuration as described in this table.
Control
Description
Common Name (required)
Specify the common name (hostname) of the peer.
Organization Name
Specify the organization name (for example, the company).
Organization Unit Name
Specify the organization unit name (for example, the section or department).
Locality
Specify the city.
State
Specify the state. Do not abbreviate.
Country (2-letter code)
Specify the country (2-letter code only).
Email Address
Specify the email address of the contact person.
Generate CSR
Generates the Certificate Signing Request.
6. Click Save to Disk to save your settings permanently.