iTP Secure WebServer System Administrator's Guide (iTPWebSvr 6.0+)
iTP Secure WebServer System Administrator’s Guide—523346-002
4-1
4
Configuring for Secure Transport
The Secure Sockets Layer (SSL) and Microsoft Private Communications Technology
(PCT) protocols provide security enhancements for the Web. These enhancements
include encryption, for ensuring privacy, and authentication (using key certificates), for
verifying the identity of servers, and, optionally, clients.
This section provides an overview to the configuration process, explains how to
configure the server for SSL and PCT, and includes these topics:
•
Using the Administration Server Securely on page 4-2
•
Overview of Server Configuration on page 4-2
•
Managing Certificates on page 4-4
•
Managing Client Authentication on page 4-24
•
Updating SSL and PCT Configuration on page 4-27
•
Controlling Access and Privacy on page 4-28
•
Controlling Encryption and Integrity Checking on page 4-30
This section explains how to prepare the iTP Secure WebServer to use encryption
provided by SSL, PCT, or both. Use the procedures in this section after installing the
iTP Secure WebServer (see Installing and Configuring the iTP Secure WebServer on
page 2-7) and configuring the PATHMON environment (see Configuring the PATHMON
Environment on page 3-4).
The iTP Secure WebServer can handle SSL and PCT requests simultaneously with
HyperText Transfer Protocol (HTTP) and Secure HTTP requests.
If you are unfamiliar with security concepts such as encryption, authentication, public
and private keys, and Certificate Authorities (CAs), see Appendix D, Security
Concepts, before proceeding further in this section.
Note. The nonsecure version of the iTP WebServer does not support SSL or PCT.