Federation Manager Guide › SSL Administration for Federation Manager › SSL Administration for the Apache Web Server and the UI › How to Enable SSL for the Apache Web Server and the UI
How to Enable SSL for the Apache Web Server and the UI
The procedure for enabling SSL for the embedded Apache web server and the Federation Manager UI is the same.
- Enable SSL for the embedded Apache web server if you want to do the following:
- Manage federation traffic across an SSL connection
- Secure communication across the back channel for artifact single sign-on.
Remember that an SSL port number is specified when you run the Configuration wizard.
- Enable SSL for the Federation Manager UI to secure the connection to the UI.
By enabling SSL, Federation Manager generates a FIPS-compatible private key for the server certificate.
Note: If you enable SSL, it affects all URLs for all services, even the Base URL parameter. This means that all service URLs must begin with https://.
To enable SSL communication:
- Request a server certificate.
- Specify the CA certificate that signs the server certificate.
- Upload the signed certificate to the system.
After the certificate is successfully uploaded, the Federation Manager activates the SSL connection.
In addition to these required steps, you can do the following:
- Retrieve a certificate signing request.
- Disable SSL.
- Delete the SSL configuration from the system.
|
Copyright © 2012 CA.
All rights reserved.
|
|
