您可以通过在配置 CLI SSL SSL TLS 模式下运行下面的命令,从已配置的"/服务配置文件"中禁用密码。
#
设置共享的ssl-tls-服务-配置文件
<Name>
设置
<tab>
示例。
</tab> </Name>
[email protected]> configure
Entering configuration mode
[edit]
[email protected]# set shared ssl-tls-service-profile (tab to view available "SSL/TLS Service Profiles")
TLSprofileTest TLSprofileTest
<value> Profile name
[email protected]# set shared ssl-tls-service-profile TLSprofileTest protocol-settings (tab to view options)
+ auth-algo-sha1 Allow authentication SHA1
+ auth-algo-sha256 Allow authentication SHA256
+ auth-algo-sha384 Allow authentication SHA384
+ enc-algo-3des Allow algorithm 3DES
+ enc-algo-aes-128-cbc Allow algorithm AES-128-CBC
+ enc-algo-aes-128-gcm Allow algorithm AES-128-GCM
+ enc-algo-aes-256-cbc Allow algorithm AES-256-CBC
+ enc-algo-aes-256-gcm Allow algorithm AES-256-GCM
+ enc-algo-rc4 Allow algorithm RC4
+ keyxchg-algo-dhe Allow algorithm DHE
+ keyxchg-algo-ecdhe Allow algorithm ECDHE
+ keyxchg-algo-rsa Allow algorithm RSA
+ max-version max-version
+ min-version min-version
<Enter> Finish input
[email protected]# set shared ssl-tls-service-profile TLSprofileTest protocol-settings enc-algo-3des (tab to view options)
no no
yes yes
[email protected]# set shared ssl-tls-service-profile TLSprofileTest protocol-settings enc-algo-3des no
[edit]
[email protected]#
