Using the WebAgent to enable SSL

CAUTION: SSL does not protect the switch from unauthorized access via the Telnet, SNMP, or the serial port. While Telnet access can be restricted by the use of passwords local to the switch, if you are unsure of the security this provides, you may want to disable Telnet access (no Telnet). If you need to increase SNMP security, use SNMP version 3 only for SNMP access. Another security measure is to use the authorized IP managers feature described in the switch’s Access Security Guide. To protect against unauthorized access to the serial port (and the Clear button, which removes local password protection), keep physical access to the switch restricted to authorized personnel.
Procedure
  • To enable SSL on the switch:
    1. In the navigation pane, click Security.
    2. Click SSL.
    3. Click Change.
    4. Select SSL Enable to enable SSL.
    5. Enter the TCP port you desire to connect on. It is recommended you use the default IP port number of 443.
      NOTE: Hewlett Packard Enterprise recommends using the default IP port number (443). However, you can use web-management ssl tcp-port to specify any TCP port for SSL connections except those reserved for other purposes. Examples of reserved IP ports are 23 (Telnet) and 80 (http). Some other reserved TCP ports on the switches are 49, 80, 1506, and 1513.
    6. Click Save.
  • To disable SSL on the switch:
    1. In the navigation pane, click Security.
    2. Click SSL.
    3. Click Change button.
    4. Clear the SSL Enable box to disable SSL.
    5. Click Save.