To configure an AA HTTP Enrichment (Application Assurance) policy

Purpose

Perform this procedure to create an AA HTTP Enrichment (Application Assurance) policy for an AQP.

HTTPS enrichment is supported for connection to auto-authentication services with web portals that use HTTPS. If an HTTP TLS extension is configured, a customized extension is inserted in the message sent by the client to the server during the TLS handshake. The web portal should include an add-on that will remove the extension and perform integrity checks on the packet without the extension.

Note: HTTP enrichment policy restrictions may differ considerably between NE types and releases. To avoid deployment failures, Nokia recommends that you create a global HTTP enrichment policy for each combination of NE type and release in your network.

For example, create one global policy for each of the following:

Different NE types:

  • 7750 SR

Different NE revisions:

  • 7750 SR, Release x Ry

  • 7750 SR, Release x Rz

Steps
 

Choose Policies→ISA Policies→Application Assurance from the NFM-P main menu. The Application Assurance Policies form opens.

Click Create→AA HTTP Enrichment or select an AA HTTP Enrichment (Application Assurance) policy entry and click Properties. The AA HTTP Enrichment (Create | Edit) form opens.

Configure the parameters.

Click on the HTTP Enrichment Fields tab.

Click Create. The HTTP Enrichment Field (Create) form opens.

Perform one of the following.

  1. Choose a field.

  2. Configure the Name parameter.

Configure the remaining parameters and select a certificate profile.

The Static String parameter is configurable when the Name parameter is set to static-string.

To create an HTTP Enrichment field with a certificate profile, select Certificate for the Encode Type parameter and choose a certificate profile.

Note: If the certificate profile is associated with an HTTP Enrichment field, the association must be removed before the certificate profile can be deleted.

Repeat Step 5 to Step 7 to add another field, if required.

10 

To configure HTTPS enrichment, click on the HTTP Enrichment TLS Extension tab. The HTTP Enrichment TLS Extension (Create) form opens.

11 

Click Select.

12 

Choose one or more subtypes and click OK.

13 

To configure HTTP RAT enrichment, click on the HTTP RAT Enrichment tab and perform the following to create RAT-type entries:

  1. Click Create. The HTTP RAT Enrichment form opens.

  2. Configure the RAT Type and RAT String, then click OK.

14 

Save your changes and close the forms.

End of steps