6-10
User
Guide

for

the

Cisco

Application

Networking

Manager

5.2
OL-26572-01
Chapter
6






Configuring

Virtual

Contexts
Configuring
Virtual

Contexts
SSL
Secure
Sockets

Layer

(SSL)

configuration

options
allow
you

to

import

and

export

SSL

certificates
and
keys,

set


up

SSL

pa

rameter

maps

and

chain
group
parameters,

generate

certificate

signing
requests
for

submission

to

a

certificate

authority,
authenticate
peer

certificates,

and

configure
certificate
revocation

l

ists

for

use

during

client
authentication.
Note
You
cannot

configure

all
SSL

options

in

a
building
block.

Instead,

configure

them

in
an
Admin

virtual

context.


Configuring
SSL,
page
11-1


Using
SSL

Certificates,

page
11-5


Using
SSL

Keys,

page
11-10


Generating
CSRs,


page
11-26


Configuring
SSL

Parameter

Maps,
page
11-18


Configuring
SSL

Cha

in

Group

Parameters,
page
11-23


Configuring
SSL

Pro

xy

Ser

vice,

page
11-27


Configuring
SSL

Authentication

Groups,
page
11-31


Configuring
CRLs
for

Client

Authentication,
page
11-33
Security
Security
configuration

options

enable

you

to
create
access

control

lists,

set

access

control

list
(ACL)
attributes,

resequence

ACLs,

delete

ACLs,
and
configure

obj

ect

groups.


Configuring
Security

with

ACLs,

page
6-78


Creating
ACLs,

page
6-79


Configuring
Object

Groups,

page
6-89
Network
Network
configuration

options

allow

you

to
configure
the

following:


VLAN
interfaces


Bridged-group
virtual
interfaces
(BVI)


Network
Address

Translation

(NAT)

pools

for
a
VLAN

interface


Static
routes


Dynamic
host

configuration

protocol

(DHCP)
relay
agents


Port
ch

annel

i

nterfaces


Gigabit
Ethernet

interfaces


Over
8,000

static

network

address

translation
(NAT)
configurations


Configuring
Virtual
Context

VLAN
Interfaces,
page

12-6


Configuring
Virtual
Context
BVI

Int

erfaces,
page
12-19


Configuring
VLAN

Interface

NAT

Pools,
page
12-26


Configuring
Virtual
Context
Static

Routes,
page
12-28


Configuring
Virtual
Context
BVI

Int

erfaces,
page
12-19


Configuring
Por

t-Channel

Int

erfaces
for
t

he
ACE
Appliance,
page
12-35


Configuring
Gigabit

Et

hernet

Int

erfaces
on
the
ACE

Appliance,

page

12-32


Configuring
Static
VLANs

for


Over

8000
Static
NAT

Configurations,

page

12-31
High
Availability
High
availability

(HA)

attributes

allow

you

to
configure
t

wo

ACE

devices

for

fault-tolerant
redundancy
and

the

tracking

and

detection

of
failures
for

timely

switchover.
Note
You
can

set

up

high
availability
in
an
Admin
context

only.


Configuring
ACE

High
Availability,
page
13-14


Configuring
ACE

High
Availability
Peers,
page
13-15


Configuring
ACE

High
Availability
Groups,
page
13-17
Table
6-2
Virtual
Context

Configuration

Options

(continued)
Configuration
Subset
Description
Related
Topics