Reply
Highlighted
New Member
Posts: 2
Registered: a week ago

EdgeSwitch SSL Issues

Hi All,

Having some trouble with my EdgeSwitch 16XGs and 48lites being unable to upload our internal signed CA to the switches. I see the option in the Legacy GUI but it is greyed out. I believe I need to disable HTTPS access to the switch before I will be able to upload the cert to the switch. However, if I disable the HTTPS access I am unable to access the switch via GUI as it automatically redirects to the HTTPS port from the HTTP port.

Does anyone have any suggesions for disabling the HTTPS redirect, or a better way to upload an inhouse cert to the switch? 

Thanks!

Ubiquiti Employee
Posts: 2,654
Registered: ‎05-08-2017
Kudos: 463
Solutions: 384

Re: EdgeSwitch SSL Issues

Hi @dtkeith02, welcome to the Community!

 

After disabling the HTTPS service, please try accessing the HTTP legacy web UI using this direct link:

http://<ip-address>/htdocs/login/login.lsp

 

-Ben

 


 

Ben Pin | Ubiquiti Support

New Member
Posts: 2
Registered: a week ago

Re: EdgeSwitch SSL Issues

Hi Ben,

Gave that a shot this morning, and still attempts to redirect to https://10.0.60.50/htdocs/login/login.lsp instead of allowing HTTP connection.

Any additional thoughts?

Ubiquiti Employee
Posts: 2,654
Registered: ‎05-08-2017
Kudos: 463
Solutions: 384

Re: EdgeSwitch SSL Issues

[ Edited ]

Please make sure that HTTPS access is fully disabled:

 

(EdgeSwitch) #no ip http secure-server 

(EdgeSwitch) #show ip http

HTTP Mode (Unsecure)........................... Enabled
Java Mode...................................... Enabled
HTTP Port...................................... 80
Maximum Allowable HTTP Sessions................ 3
HTTP Session Hard Timeout...................... 24 hours
HTTP Session Soft Timeout...................... 5 minutes

HTTP Mode (Secure)............................. Disabled
Secure Port.................................... 443
Secure Protocol Level(s)....................... TLS1 -----
Maximum Allowable HTTPS Sessions............... 4
HTTPS session hard timeout..................... 24 hours
HTTPS session soft timeout..................... 5 minutes
Certificate Present............................ True
Certificate Generation In Progress............. False

 

I find that a lot of modern browsers often try to redirect HTTP sessions to HTTPS. I recommend to try and use IE to connect to the EdgeSwitch.

 

-Ben

 


 

Ben Pin | Ubiquiti Support

Reply