Editing Security Settings

Procedure

  1. In the Settings section, click Edit. The Edit Settings dialog box is displayed.
  2. Select the certificate to use with the corresponding category. For example, Client SSL, Server SSL over data NIC, or Server SSL over mgmt NIC.
  3. Select the VPeer check box if appropriate.
    • Selecting VPeer means that the integration appliance authenticates the identity of the SSL peer using the certificate provided by the peer.
    • When selected for the Client SSL category, the integration appliance authenticates the identity of the SSL server using the certificate sent by the server.
    • When selected for the Server SSL over data NIC category, the integration appliance requires that SSL clients connecting to the integration appliance must send a certificate.
  4. Select the VHost check box if appropriate.
    • Selecting VHost means that the integration appliance verifies that the hostname of the server in an SSL session matches the name contained in the server certificate. This check is designed to prevent a man-in-the-middle (MITM) attack and is described in RFC 2818 HTTP Over TLS Section 3.1 Server Identity.
    • The VHost selection is only applicable for the Client SSL category.
    • The VHost selection is only applicable when VPeer is also selected.
  5. Select the cipher strength.
    • Standard

    • Strong

  6. Click Save.



Feedback | Notices


Timestamp icon Last updated: Wednesday, February 17, 2016


http://pic.dhe.ibm.com/infocenter/wci/v7r0m0/topic/com.ibm.wci.appliance.doc/Security/editingSecuritySettings.html