Verification of Policies (from the CLI)
Note
You also need to configure the remote HTTPS server to use HTTP Strict Transport Security (HSTS). Enabling the HSTS policy instructs the browser to only communicate via HTTPS.
Enter the following command:$ policy https set hsts=yes
You can also configure HSTS using the Web Interface on all Makito X and Makito X4 devices with the exception of the Makito X4 Decoder (as of Release 1.2).
To verify your policy settings, do the following:
- Enter the following command:
$ policy all get
Verify that the policy settings shown correspond to what you had configured.
Example:
JS$ policy all get Crypto: Compliance : ndpp11 SSLv3 : Disallowed TLSv1.0 : Yes TLSv1.1 : Yes TLSv1.2 : Yes HTTPS: HSTS : Yes Password: Quality : Strong MinLen : 10 MinUppers : 1 MinDigits : 0 MinSymbols : 1 Expiry : Yes Lifetime : 30 Session: Autologout : Yes IdleTimeout : 20
See also policy
in the CLI Command Reference in the associated User's Guide.