|
|
|
You configure encryption settings when you install CA Access Control. After installation, you can use the sechkey utility to change SSL encryption. You may also need to change the value of configuration settings.
Important! To avoid communication problems, use the same encryption method on all computers that run CA Access Control components.
To enable SSL encryption
If you are changing the encryption settings on a CA Access Control Enterprise Management Server, also stop the CA Access Control Web Service.
Specify this value if you want to enable both symmetric and SSL encryption. This value lets the computer communicate with all CA Access Control components.
Note: If you specify this value, CA Access Control uses SSL encryption each time that it tries to communicate with another CA Access Control component. If SSL fails, it then uses symmetric encryption. This value lets you migrate your CA Access Control deployment from a symmetric encryption environment to an SSL encryption environment.
Specify this value to enable SSL encryption only. This value lets the computer communicate with only the CA Access Control components that use SSL encryption.
Note: (Windows) If you are working with a third-party program that uses the CA Access Control SDK, the crypto section is located at the CA Access Control SDK registry path that you defined during installation.
Note: If you do not configure SSL encryption further, you can use the default CA Access Control X.509 certificates to encrypt and authenticate communication between CA Access Control components. However, we recommend that you change the default certificates instead.
SSL encryption is enabled.
| Copyright © 2012 CA. All rights reserved. |
|