Basic TLS server configuration must have the following:
Basic TLS client configuration must have a cipher list created using the config>system>security>tls>client-cipher-list command, and assigned to the TLS client profile using the config>system>security>tls>client-tls-profile>cipher-list command.
TLS imports the trust anchor certificate for (TLS) peer certificate authentication and public key retrieval.
The following displays the CLI syntax for TLS:
The following displays a TLS configuration example.
The following displays the CLI syntax for a server TLS profile.
The following displays the CLI syntax for a client TLS profile, which also configures the server authentication behavior:
The following displays the CLI syntax for TLS certificate management:
The following displays the CLI syntax for a TLS trust anchor:
The following displays a TLS trust anchor configuration example: