Hi,
You can configure login through the web system in simple mode or secure mode:
If you configure web system login in simple mode:
· The device provides a default SSL policy, and the web page file contains a randomly generated self-signed certificate. If the default SSL policy and self-signed certificate meet security requirements, you do not need to upload a digital certificate or configure an SSL policy. The configuration of this mode is simple but brings security risks. It applies to scenarios that do not have high-security requirements
· you can configure Device Login Through the Web System (Simple Mode) by following steps here
If you configure web system login in secure mode:
· For security purposes, it is recommended that you use secure mode to configure device login through the web system. This mode involves manually configuring an SSL policy and helps ensure security
· You can configure Device Login Through the Web System (Secure Mode) by following steps Here
· You need to configure an SSL policy and load a digital certificate
· To disable SSLV3 to disable SSLv3 and use TLSv1.2 instead run >> ssl minimum version tls1.2
· This command configures a minimum SSL version for an SSL policy as reference Here
Example
# Configure the minimum SSL version for the SSL policy ftp_server to be TLS1.2.
<HUAWEI> system-view
[HUAWEI] ssl policy ftp_server
[HUAWEI-ssl-policy-ftp_server] ssl minimum version tls1.2
