Hi Wylie, list We currently use SSL between the client and the server. I found it to be a fairly straightforward process as there's nothing that is Spectrum specific about the configuration - there are plenty of resources for configuring SSL on Tomcat.
1. Create a keystore file (there is a free utility from IBM called KeyMan that allows you to create a variety of different certificate files) with either an authority signed key or you can use a self-signed certificate. Self-signed certificates can be a little more complex, but Google is there to help. 2. You may need to update the Java "cacerts" keystore file on the OneClick server as well if you're using a self-signed certificate or a cert from a company that isn't in there (the signing authority certificate) 3. You'll need to modify the server.xml file as described by Roderick 4. I also modify the index.html redirect to use https 5. Restart OC There is no change in functionality or problems with the OC clients that I have noticed. One thing to keep in mind is that after applying any patches or hot fixes the changes to server.xml and index.html need to be reapplied. James Cooleman Team Leader, Infrastructure Intelligence | Datacom Systems Limited | Level 4, 106 Vincent Street, Auckland 1010 New Zealand Email: [email protected]<mailto:[email protected]> | Ph: +64 9 303 1489 | Fax: +64 9 373 8810 | Mob: +64 21 347 775 From: Wylie Bowens [mailto:[email protected]] Sent: Tuesday, 1 September 2009 8:45 To: spectrum Subject: [spectrum] One Click Server SSL List, Does anyone out there utilize the secure communication feature SSL between One Click client and the One Click server? Interested in: the ease of install any problems with One Click clients afterward any changes in One Click client experience afterward. Does the documentation of "One Click Administration Guide" accurately describe the process [cid:[email protected]] ****************************************************************************** This email and any files transmitted with it are intended solely for the use of the individual or agency to whom they are addressed. If you have received this email in error please notify the Navy Exchange Service Command e-mail administrator. This footnote also confirms that this email message has been scanned for the presence of computer viruses. Thank You! ****************************************************************************** * --To unsubscribe from spectrum, send email to [email protected]<mailto:[email protected]> with the body: unsubscribe spectrum [email protected] --- To unsubscribe from spectrum, send email to [email protected] with the body: unsubscribe spectrum [email protected]
<<inline: image001.gif>>
