ssl-options
This command specifies the list of elliptic curves that the SSL server profile supports.
Syntax
ssl-options options
Parameters
- options
-
Specifies the options to apply to the SSL connection. The following values are valid. To specify multiple options, separate each option with the plus sign (+) character. For example, max-duration+max-renegotiation.
- max-duration
- Enables the option to specify the maximum duration of the SSL session.
- max-renegotiation
- Enables the option to specify the maximum number of the client initiated renegotiation that is allowed per session.
Guidelines
The ssl-options command specifies the options to apply to the SSL connection.
Enabling these options has negative impact on the performance of the SSL communication. When
enabled, you can change the following SSL settings. The default behavior is 60 seconds and 0
renegotiation attempts.
- Use the max-duration command to change the maximum duration of the SSL session.
- Use the max-renegotiation-allowed command to change the maximum number of renegotiation attempts that the client can initiate per session.