iTP Secure WebServer System Administrator's Guide (Version 7.0)
Integrating the WebSafe2 Internet Security
Processor (WISP)
iTP Secure WebServer System Administrator’s Guide—523346-012
5-22
Switching From WebSafe2 to Software Encryption
Switching From WebSafe2 to Software
Encryption
If your configuration includes WISPs, and you decide to switch to software
encryption—for example, if you want to use PCT—you must do these:
1. Generate a new key pair and obtain a new certificate for software use; the key pair
and certificate used for WebSafe2 SSL encryption cannot be used for software
encryption. For information about generating key pairs and obtaining certificates for
software encryption, see Using the Keyadmin Utility to Manage Keys and
Certificates on page 4-7.
2. Remove or rename the httpd.websafe.config file.
3. Check that the httpd.config file includes httpd.stl.config and that the
httpd.stl.config file has one or more AcceptSecureTransport directives
that include the options you require.
4. Restart the iTP Secure WebServer as described in Section 6, Managing the iTP
Secure WebServer Using Scripts.
Switching From Software to WebSafe2
(Hardware) Encryption
If you initially use SSL encryption in software and then migrate to WISP use, you must
do these:
•
Generate a new key pair and obtain a new certificate for use with the WISP; the
key pair and certificate used with software SSL encryption cannot be used for
WebSafe2 encryption. For information about generating key pairs and obtaining
certificates for WebSafe2 encryption, see Generating the Public/Private Key Pair
and Obtaining the Certificate on page 5-10.
•
Execute install.WS -websafe.
•
Restart the iTP Secure WebServer as described in Section 6, Managing the iTP
Secure WebServer Using Scripts.
Where to Go From Here
To learn more about configuring the iTP Secure WebServer, see Section 7, Configuring
the iTP Secure WebServer. To learn more about how to manage the iTP Secure
WebServer, see Section 6, Managing the iTP Secure WebServer Using Scripts.
Note. WebSafe2 encryption is supported only on systems running G-series RVUs.
Note. WebSafe2 encryption is supported only on systems running G-series RVUs.