Secure Socket Layer (SSLv3) is a feature of ExtremeXOS that allows you to authenticate and encrypt data over an SSL connection to provide secure communication.
The existing web server in ExtremeXOS allows HTTP clients to access the network login page. By using HTTPS on the web server, clients securely access the network login page using an HTTPS enabled web browser. Since SSL encrypts the data exchanged between the server and the client, you protect your data, including network login credentials, from unwanted exposure.
HTTPS access is provided through SSL and the Transport Layer Security (TLS1.2). These protocols enable clients to verify server authenticity to prevent network intruders.
RSA for public key cryptography (generation of certificate and public-private key pair, certificate signing). RSA key size between 1,024 and 4,096 bits.
Symmetric ciphers (for data encryption): RC4 and 3DES.
Message Authentication Code (MAC) algorithms: RSA Data Security, Inc. MD5 Message-Digest Algorithm and SHA.
Version 32.3 adds a security enhancement that auto-generates an SSL certificate on enabling web HTTPS if an SSL certificate is not already created via the CLI. The certificate is generated with default configurations for the following:
Once the certificate is successfully generated, the HTTPS login will be granted. The generation and validation of the certificate and key behaves in the same way as those that are generated through the command line.