Configuring Logging In to the CLI Using HTTPS Using the WEB - In Practice

Hello everyone,

Today, I would like to introduce in practice a method of configuring the HTTPS protocol and login via CLI.

The local administrator has some administrator permissions and can use HTTPS to login to the CLI only from a local PC for FW management and maintenance. FW implements local authentication on administrators.

Procedure:

To complete our example, we need to follow these steps:

Configure the login port:

Set the IP address of the port and the enable access control on the port.

Configure the interface IP address and interface-based access control and enable the administrator to log in to the device through HTTPS.

In the example the configured IP address has been set to 172.16.100.2, the interface has been added to the trust zone and the administrator has permission to log into the device using HTTPS.

Add an interface to the security zone.

Enable the HTTPS service.

Choose System > Administrator > Service Settings and select the Enable check box beside HTTPS Service. 

Configure the login port.

Choose System > Interface and click the Edit button on the line of GE0/0/0. 

Set the IP address and security zone of the port and select HTTPS as the access mode.

Configure the administrator: 

Choose System > Adminstrator > Adminstrator and click Add.

In the example the username is webuser and the password Huawei@123

Verification 

Open the browser on the PC, access https://172.16.100.2:8443, enter the user name "webuser" and password "Huawei@123", and click Login. 

If the following information is displayed on the browser, the login succeeds. 

With that our practical example was completed.

Cheers,