Content Classification Service Integration Guide › CCS Deployment › Reconfigure Connections to the Classification Cache › Use an SSL Secured Cache

Use an SSL Secured Cache

Reconfigure the CCS to use an SSL secured cache.

1. Verify that the Local Machine certificate store on the CCS server contains one of the following certificates:
   • The certificate used by the classification cache DSA to identify itself, or
   • A certificate for the trusted root certification authority that supplied the DSA certificate.
2. Edit web.config on the primary CCS server.

   Find this file in the %WGNINSTALLDIR64%\CCS\WebService subfolder of the CA DLP installation folder.

3. Locate the following <ccscache> section:

   <ccscache 
     enabled="true"
     LDAPServer="[DSA host computer]" 
     LDAPPort="[DSA port number]" 
     minConnections="[n]" 
     maxConnections="[n]" />
   

4. Add the security and credentials sections if they do not already exist.
5. Add the useSSL parameter if it does not already exist.
6. Set useSSL to “true”.

   The <ccscache> section now looks similar to the following:

   <ccscache 
     enabled="true"
     LDAPServer="[DSA host computer]" 
     LDAPPort="[DSA port number]" 
     minConnections="[n]" 
     maxConnections="[n]" >
       <security useSSL=”true” />
       <credentials>
           <user 
               name="cn=ccsUser,cn=Users,cn=ClassificationCache"
               password="changeme" />
       </credentials>
   </ccscache>
   

   If you changed the default password for the ccsUser, set the password parameter in the <user> element to the new password.

7. Save the changes to web.config.

   ASP.NET detects the configuration change and automatically restarts the CCS web service.

8. (Optional) Manually restart Microsoft IIS if you want to be certain that your cache configuration changes have been implemented.