CA Strong Authentication Administration Guide › Configuring SSL › Enable Secured Communication between Administration Console and CA AuthMinder Server › Enable One-Way SSL

Enable One-Way SSL

Follow these steps:

1. Access the Administration Console in a Web browser.
2. Log in to Administration Console as the MA.
3. Click the Services and Server Configurations tab in the main menu.
4. Click the CA Strong Authentication tab in the submenu.
5. Under Instance Configurations, click the Protocol Management link to display the corresponding page.

   The Protocol Configuration page appears.

6. Select the Server Instance for which you want to configure the protocols.
7. In the List of Protocols section, click the Server Management Web Services link.

   The page to configure the protocol appears.

8. Configure the following fields:
   • Ensure that the protocol is enabled.
   • In the Transport field, select SSL (1-Way).
   • Select Key in HSM if you want to store the SSL key in HSM.
   • (Only if you selected Key in HSM in the preceding step) Click the Browse button adjacent to the Certificate Chain (in PEM Format) field to select the CA AuthMinder root certificate.
   • Click the Browse button adjacent to the P12 File Containing Key Pair field to select the CA AuthMinder root certificate.
   • Enter the password for the PKCS#12 store in the P12 File Password field.
9. Click the Save button.
10. Restart the CA AuthMinder Server instance. See Restarting a Server Instance for instructions on how to restart the CA AuthMinder Server.
11. Activate the Services and Server Configurations tab in the main menu.
12. Activate the CA Strong Authentication tab in the submenu.
13. Under System Configuration, click the WebFort Connectivity link to display the corresponding page.

    The WebFort Connectivity page appears.

14. Set the following for the Server Management Web Services protocol:
    • Ensure that the IP Address and Port number of the CA AuthMinder Server is set appropriately.
    • In the Transport field, select SSL(1-Way).
    • Click the Browse button adjacent to the Server CA Certificate in PEM field to select the CA AuthMinder root certificate.
15. Click Save.
16. Restart the CA AuthMinder Server.
17. Verify that the CA AuthMinder Server is enabled for SSL communication by performing the following steps:
    1. Navigate to the following location:
    2. Open the arcotwebfortstartup.log file in a text editor.
    3. Check for the following line in the [ArWFProtocolConfiguration] section of the Server Management Web Services protocol ([ServerManagement-WS]):

       PORTTYPE : [SSL]
       

    4. Close the file.