CA Risk Authentication Administration Guide › Configure SSL › Prepare for SSL Communication › Enable SSL Between CA Advanced Authentication and CA Risk Authentication Case Management Server › For Server Refresh and Restart Activities › One Way SSL

One Way SSL

To set up one-way SSL communication between CA Advanced Authentication and Case Management Queuing Server for server management activities:

1. Access CA Advanced Authentication in a Web browser window.
2. Log in to CA Advanced Authentication as the MA.
3. Activate the Services and Server Configurations tab.
4. Ensure that the CA Risk Authentication subtab is activated.
5. Under Instance Configuration, click the Protocol Configuration link to display the Protocol Configuration page.
6. Select the Server Instance for which you want to configure SSL communication.
7. In the List of Protocols section, click the Case Management Queuing Administration link.

   The page to configure the Case Management Queuing Administration protocol appears.

8. Configure the following fields:
   • Ensure that the Protocol Status is Enabled.

     If not, then select the Change Protocol Status option and then from the Action list, select Enable.

   • Ensure that the Port is set to the correct SSL port value.
   • Select SSL from the Transport list.
   • If you want to store the SSL key on an HSM, then select the Key in HSM option.
   • Click the Browse button adjacent to the Server Certificate Chain field to select the Case Management Queuing Server root certificate.
   • (Only if you did not select the Key in HSM option) Click the Browse button adjacent to the Server Private Key field to select the Case Management Queuing Server private key.
9. Click the Save button.
10. Restart Case Management Queuing Server:
    • On Windows: Click the Start button, navigate to Settings, Control Panel, Administrative Tools, and Services. Double-click Arcot Case Management Queuing Service from the listed services.
    • On UNIX Platforms: Navigate to <install_location>/arcot/bin/ and specify the ./casemanagementserver start command in the console window.
11. Under System Configuration, click the CA Risk Authentication Connectivity link to display the CA Risk Authentication Connectivity page.
12. In the Case Management Queuing Server Management Connectivity section:
    • Ensure that the IP address or the host name of Case Management Server is correctly set in the Server field.
    • Ensure that the Server Management Port is also set to point the Case Management Server port that is open to server management requests.
    • Select SSL from the Transport list.
    • Click the Browse button adjacent to the Server CA Root Certificate field to navigate to and select the Case Management Server root certificate.
13. Click the Save button.
14. Restart Case Management Queuing Server:
    • On Windows: Click the Start button, navigate to Settings, Control Panel, Administrative Tools, and Services. Double-click Arcot Case Management Queuing Service from the listed services.
    • On UNIX Platforms: Navigate to <install_location>/arcot/bin/ and specify the ./casemanagementserver start command in the console window.
15. Restart CA Advanced Authentication.