Filter
Top Products
13-12
Cisco Broadband Access Center 3.8 Administrator Guide
OL-27172-01
Chapter 13 Configuring CWMP Service Security
Configuring Security for DPE Services
% OK (Basic authentication was enabled. Digest authentication was disabled. Requires DPE
restart "> dpe reload")
dpe# service cwmp 2 port 7548
% OK (Requires DPE restart "> dpe reload")
dpe# service cwmp 2 ssl enable true
% OK (Requires DPE restart "> dpe reload")
dpe# service cwmp 2 ssl keystore train-1.keystore changeme changeme2
% OK (Requires DPE restart "> dpe reload")
dpe# service cwmp 2 ssl client-auth client-cert-unique
% OK (Requires DPE restart "> dpe reload")
dpe# service cwmp 1 enabled false
% OK (Requires DPE restart "> dpe reload")
dpe# service cwmp 2 enable true
% OK (Requires DPE restart "> dpe reload")
dpe# dpe reload
Process dpe has been restarted.
% OK
Note This example configures SSL transport on CWMP instance 2. The example assumes that the
train-1.keystore is preloaded with the signed public key certificate for the server and that the
keystore file was moved to the BPR_HOME/dpe/conf directory on the DPE.
Enabling SSL for the HTTP File Service
The following example describes the commands that you use to enable the SSL protocol for an instance
of the HTTP file service. In this example, client authentication is disabled; thus allowing access without
an authentication challenge.
dpe# service http 2 client-auth none
% OK (Requires DPE restart "> dpe reload")
dpe# service http 2 port 7550
% OK (Requires DPE restart "> dpe reload")
dpe# service http 2 ssl enable true
% OK (Requires DPE restart "> dpe reload")
dpe# service http 2 ssl keystore train-1.keystore changeme changeme2
% OK (Requires DPE restart "> dpe reload")
dpe# service http 2 ssl client-auth none
% OK (Requires DPE restart "> dpe reload")
dpe# service http 1 enable false
% OK (Requires DPE restart "> dpe reload")
dpe# service http 2 enable true
% OK (Requires DPE restart "> dpe reload")