The Web object enables the Web server, providing access to the ME Management System graphical user interface. If you want to view SNMP traps through the GUI, you must also enable the server as a trap target. You enable and configure Web services on Ethernet and VLAN interfaces.
Configures the web server on an Ethernet or VLAN interface.
config cluster box number interface ethX ip name web config cluster box number interface ethX vlan number ip name web config box interface ethX ip name web config box interface ethX vlan number ip name web
admin: Enables or disables the system web server configuration object. Enabling a web server allows you to manage the system using the ME Management System.
Default: enabled
Values: enabled | disabled
Example: set admin disabled
protocol: Sets the protocol to use for the ME Management System operations. After setting a protocol, you can select the web server listening port (or accept the default). This is the port the server listens on for HTTP(S) requests.
Default: https 443; the redirect port defaults to 0 which disables redirect; the default alias for the key is tomcat
Values: http: Sets an insecure (unencrypted) protocol for use in web transmission.
https: Provides secure transmission of web pages by using HTTP over SSL. Optionally, you can set:
A redirect port
A reference to a previously configured certificate (configured with the certificate object)
An alias for the key in the key store (named in the certificate configuration)
Example: set protocol https 443 0 ”vsp tls certificate nnos-e.company.com” certKey
trap-target: Configures whether the Web server collects SNMP traps. If enabled, the system sends traps to the Web server as well any other SNMP target. You can then view the SNMP traps through the ME Management System Event Logs tab. If disabled, the Web does not collect SNMP traps.
Default: disabled
Values: enabled | disabled
Example: set trap-target enabled
jmx: Enables or disables the Java Management Extensions Managed Beans (MBeans) server. The MBean server functions as a management agent by acting as a registry for all manageable resources: applications, services, components, and devices.
When enabled, the system uses JMX as an interface to control resources and make them available to remote management applications. Optionally, you can specify the When disabled, the server does not run and you use another method as a system interface.
Default: disabled; if enabled, the default registry port is 1099 and the default server port is 1100 Values: enabled [registryPort][serverPort] | disabled
Example: set jmx enabled 1099 1100
max-threads: Specifies the maximum number of total worker threads, both active and spare (idle), allocated to the web server.
Default: 10
Values: Min: 1 / Max: 50
Example: set max-threads 15
min-spare-threads: Specifies the minimum number of inactive threads that the system must leave allocated to the web server. When the system removes idle threads, it must leave this number of spares available.
Default: 1
Values: Min: 0 / Max: 50
Example: set min-spare-threads 20
max-spare-threads: Specifies the maximum number of inactive threads the system can leave allocated to the web server. When the system detects idle threads, it can not maintain more than this number.
Default: 5
Values: Min: 0 / Max: 50
Example: set max-spare-threads 8
idle-timeout: Specifies an inactivity timeout for the ME Management System. When a session has been inactive for this number of minutes, the system logs the user off the system. A value of 0 turns off the inactivity timer.
Default: 30
Example: set idle-timeout 45
Configures a profile of one or more IP addresses that are considered ”trusted hosts” and can therefore bypass authentication. When the ME receives an HTTP request, it checks to determine whether the request came from an IP address within any trusted host profile. The ME then applies the matching permissions to the request, and bypasses the authentication (login) process. Use this to integrate selected pages into a third-party application.
config cluster box number interface ethX ip name web trusted-ips name config cluster box number interface ethX vlan number ip name web config box interface ethX ip name web trusted-ips name config box interface ethX vlan number ip name web trusted-ips name
permissions: Associates a set of permissions with this trusted host. Enter a reference to a previously configured set of permissions. Keep in mind that the specific access granted by the permissions profile effects the tab display in the ME Management System.
Default: There is no default setting
Example: set permissions ”access permissions EMS”
ip-address: Sets the IP address(es) that should be allowed access to the ME Management System without further authentication. Enter the IP address of the client accessing the Web browser.
Default: There is no default setting
Example: set ip-address 172.24.0.22