I'm running the latest version 6.2

Perhaps try enabling "ip http" and connecting over HTTP, and see if you can get the simpler configuraiton going first.

Already did that and HTTP works fine... HTTPS does not work.

I get...

Unable to connect.

SSL handshake process failed. The secure connection through HTTPS could not be established.

I've uninstalled CNA and reinstalled it.

I'm using the self-signed cert that is automatically created.

I'm going to guess that something was disabled in the new switch code, like SSL3, or such like, and CNA still needs it.

Perhaps have a play with:

ip http secure-ciphersuite ...

I'll loo at that

I'm trying to do something similar.  Any update on this? 

I believe the issue is that CNA needs to be updated

From...http://www.cisco.com/c/en/us/td/docs/switches/lan/catalyst3750x_3560x/software/release/15-2_4_e/releasenotes/rn-1524e-3750x3560x.html#pgfId-832031

CNA Compatibility

Cisco IOS 15.2(2)E will be supported in a future release of the Cisco Network Assistant.

It seems that this issue is pervasive across all manner of switches. I have 2960X and 3650 both cannot be managed without first enabling http server by changing

no ip http server

ip http secure-server

to

ip http server

ip http secure-server.

This is with CNA 6.3 and 15.2(2)E5 on 2960X. and 03.06.04.E on 3650.

Switch release notes state the following.

For Cisco IOS Release 15.2(2)E, CNA support is available on release version 5.8.9 and later.