1-2Associating the HTTPS Service with an SSL Server PolicyYou need to associate the HTTPS service with a created SSL server policy before enabling the HTTPSservice.Follow these steps to associate the HTTPS service with an SSL server policy:To do… Use the command… RemarksEnter system view system-view —Associate the HTTPS servicewith an SSL server policyip https ssl-server-policypolicy-nameRequiredNot associated by defaultz If the ip https ssl-server-policy command is executed repeatedly, the HTTPS service is onlyassociated with the last specified SSL server policy.z When the HTTPS service is enabled, no modification of its associated SSL server policy takeseffect.Enabling the HTTPS ServiceThe device can act as the HTTPS server and users can access and control the device through the Webfunction only when the HTTPS service is enabled.Follow these steps to enable the HTTPS service:To do… Use the command… RemarksEnter system view system-view —Enable the HTTPS service ip https enable RequiredDisabled by default.z After the HTTPS service is enabled, you can use the display ip https command to view the stateof the HTTPS service and verify the configuration.z Enabling of the HTTPS service will trigger an SSL handshake negotiation process. During theprocess, if the local certificate of the device already exists, the SSL negotiation is successfullyperformed, and the HTTPS service can be started normally. If no local certificate exists, acertificate application process will be triggered by the SSL negotiation. Since the applicationprocess takes much time, the SSL negotiation may fail and the HTTPS service cannot be startednormally. Therefore, the ip https enable command must be executed for multiple times to ensurenormal startup of the HTTPS service.