![]() In the case that a CA-signed certificate is configured on the P4S port, the certificate on the MS-HTTPS port is required to be issued by the same authority. Message ServerĪdditionally, HTTPS can also be configured as the protocol for communication with the Message Server. ![]() ![]() To upload a new CA to the Diagnostics Agents see Upload CA to the Agent. Expiring Root CertificatesĪutomatic health checks inform the system administrator when the root certificate (the certificate that signed the certificates associated with the server's P4S port) is about to expire. An Diagnostics Agent that has been configured to verify the identity of the server will not connect to or accept reconfiguration from an untrusted server. Additional CAs are read from the Diagnostics Agents key store. In order to verify the server's identity the Diagnostics Agent uses t he default list of trusted CAs, which is provided by the JRE. Using this certificate, the Solution Manager 7.20 provides a proof of authenticity which can be checked by the Diagnostics Agents if configured accordingly (see Setup Server Authentication). The Diagnostics Agents initiate communication with the Solution Manager by establishing a P4(S) socket to the Java server. As with an HTTPS port, the P4S port to which the Diagnostics Agents connect is associated with an X509 certificate (and a private key, to establish ownership of the certificate). General Information Server Authentication
0 Comments
Leave a Reply. |
Details
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |