This module describes the commands used to configure the Secure Socket Layer (SSL) protocol.
For detailed information about SSL concepts, configuration tasks, and examples, see the Implementing Secure Socket Layer on
module in the
System Security Configuration Guide for Cisco NCS 6000 Series
To display active
Secure Socket Layer (SSL) sessions, use the show ssl command.
Process ID (PID) of the SSL application. The range is from 1 to 1000000000.
command was introduced.
To use this command, you must be in a user group associated with a task group that includes appropriate task IDs. If the user group assignment is preventing you from using a command, contact your AAA administrator for assistance.
To display a
specific process, enter the process ID number. To get a specific process ID
run pidin from
the command line or from a shell.
The absence of any
argument produces a display that shows all processes that are running SSL.
The following sample
output is from the show ssl
RP/0/RP0/CPU0:router# show ssl
PID Method Type Peer Port Cipher-Suite
1261711 sslv3 Server 172.16.0.5 1296 DES-CBC3-SHA
This table describes
the fields shown in the display.
Table 1 show ssl Field
of the SSL application.
version (sslv2, sslv3, sslv23, or tlsv1).
of the SSL peer.
number on which the SSL traffic is sent.
cipher suite chosen for the SSL traffic. The first portion indicates the
encryption, the second portion the hash or integrity method. In the sample
display, the encryption is Triple DES and the Integrity (message digest
algorithm) is SHA.
the process ID for all processes that are running.