Enabling SSL on the switch and anticipating SSL browser contact behavior

The web-management ssl command enables SSL on the switch and modifies parameters the switch uses for transactions with clients. After you enable SSL, the switch can authenticate itself to SSL enabled browsers. If you want to disable SSL on the switch, use the no web-management ssl command.

Before enabling SSL on the switch you must generate the switch’s host certificate and key. If you have not already done so, see Generating the switch's server host certificate.

When configured for SSL, the switch uses its host certificate to authenticate itself to SSL clients, however unless you disable the standard WebAgent with the no web-management command it will be still available for unsecured transactions.