Previous Topic: Generating SSL Certificates

Next Topic: Set Expiration

Generating SSL CertificatesSSL Mode

SSL Mode

CA XCOM Data Transport uses SSL in client/server mode. In client/server mode, certificates and private keys are required for both the local (initiating) and remote (receiving) CA XCOM Data Transport partners. SSL considers the local CA XCOM Data Transport partner to be the client and the remote CA XCOM Data Transport partner to be the server.

When establishing the SSL connection, the server sends the server certificate to the client for verification. After the client verifies the server certificate, the client sends the client certificate to the server for verification. Both the client and the server must verify the Certification Authority (CA) certificate from the other.

To set up SSL for CA XCOM Data Transport

Important! When you install CA XCOM Data Transport, the SSL certificates (in Steps 1 to 4) are automatically generated. They are documented here in case you need to regenerate them at any time.

  1. Set the expiration for the CA certificate (if required).
  2. Create the CA certificate (if required).
  3. Create the server certificate (if required).
  4. Create the client certificate (if required).
  5. Configure the CA XCOM Data Transport SSL server.
  6. Configure the CA XCOM Data Transport client.

These tasks are described in the following sections.