The web components of Client Automation such as Web Console, Asset Management Service (AMS) and Patch Manager run under the same instance of tomcat and the primary entry point is IIS (on Windows) or Apache web server (on Linux) which redirects the requests to tomcat instance. To support HTTPS (HTTP over SSL), we recommend to configure IIS or Apache web server with SSL or TLS. The configuration of the web servers (IIS or Apache web server) for SSL or TLS is not performed by the Client Automation installer. To avoid the Poodle vulnerability, we recommend the following configuration:
Configure the web server with the latest version of TLS instead of SSL. For more information about setting up the TLS, refer the corresponding operating system and web server documentation.
Disable the SSL and enable the latest version of TLS for the browser used to access the websites. For more information about disabling the SSL and enabling the TLS, refer to the corresponding browser documentation.
|
Copyright © 2014 CA Technologies.
All rights reserved.
|
|