To manage the functions of the Web User Interface (WebUI), configure the following attributes:
Enable Web Management Idle Timeout: To limit the length of administrative inactivity to a specified interval, select the check box and enter a number in the Minutes field. Clear the checkbox to prevent a session from terminating due to inactivity.
Help Link Path: By default, the path to the online help for the Web UI points to the Juniper Networks support site. You have the option of modifying the path to a path on your local server or to the documentation CD that shipped with your product.
HTTP Port: Enter the port number that you want the Web service to use to listen for HTTP requests. The default port number is 80.
Redirect HTTP to HTTPS (optional): Directs the device to accept HTTP connection requests, and redirects the sessions to HTTP over the Secure Socket Layer (HTTP over SSL).
If you check the Redirect HTTP to HTTPS box, make sure you also check the following SSL box. If you enable Redirect HTTP to HTTPS without enabling SSL, then you will not be able to access the Web UI.
SSL (optional): Enables SSL (Secure Socket Layer) protocol. SSL protocol provides privacy and reliability between two communicating applications.
HTTPS (SSL) Port: Enter the port number that you want the Web service to use for Secure Sockets Layer (SSL). The default port number is 443.
Certificate: Select a valid certificate from the drop-down menu. These are certificates that you previously requested and loaded (see Certificates under Objects in the WebUI menu).
Cipher: Select the cipher suite you want the security device to use to secure communications depending on your environment, certificates keys in use, and security requirements.
The four supported cipher suites represent a selection of cryptographic algorithms and parameters. It is recommended to use the strongest cipher suite 3DES_SHA-1, although it imposes some computational burden on the management station. The remaining three cipher suites are listed in the order of their strength: RC4_MD5, DES_SHA-1, RC4_40_MD5. The RC4_40_MD5 suite is a 40-bit implementation of RC4 used in situations where US export controls or locale-specific import restrictions do not permit longer keys.
Telnet Port: Enter the port number for Telnet requests. The default port number is 23.
Enable SSH (V2): Enables Secure Shell (SSH) version 2 support. The security device can be configured globally to support SSHv1 or SSHv2. SSH provides strong authentication and secure communications—through encryption—over insecure channels. Administrative access to the CLI via SSH is enabled or disabled on a per-port basis.
Enable SCP: Select this feature to enable Secure Copy (SCP). SCP provides a way of transferring files to or from the security device using the SSH protocol.
Port: Enter the port number for SSH requests. Enter a port number between 1024 and 32767. The default port number is 22.
Enable Device Reset: Enables device reset for asset recovery. By default, the device recovery feature is enabled. This options allows you to reset the security device to its factory default settings if the admin password is lost.
At the console connection, enter the device serial number for both username and password. This resets the security device to its factory defaults, but deletes the current configuration.
Enable Hardware Reset: Enables hardware reset for asset recovery. Enable this option to allow physical reset of the security device. Depressing the button located behind the "Reset" pinhole in a specific pattern deletes the device configuration and reverts to the factory defaults.
Click Apply to save your settings.