Support

Go to the table of contents Go to the previous page Go to the next page Go to the index View or print as PDF
Working With Encrypted Data > Decryption and Encryption > Configuring SSL Manager for outbound traffic
Configuring SSL Manager for outbound traffic
Help | Content Gateway | Version 7.7.3
Use the page Configure > SSL > Decryption / Encryption > Outbound to configure how SSL Manager handles outbound traffic. Outbound traffic travels from SSL Manager to the destination Web server. SSL Manager checks the revocation status of this site's certificate before forwarding re-encrypted data to it.
1.
Select IP Address to forward authentication credentials from one proxy to the next if there are multiple proxies between SSL Manager and the destination host.
2.
Select Send VIA-Header to add a special header to the HTTP header to describe the proxy chain traffic passed through. This can be helpful in troubleshooting. If you do not want to include a VIA-Header, do not select this box.
3.
Under Protocol Settings, indicate which protocols you want SSL Manager to support. Supported protocols are SSLv2 and v3, and TLS v1. Select the protocol that your enterprise browser supports; you must select at least one protocol. The default is SSLv2. These settings override the settings for these protocols in the users' browsers.
You can select different protocols for inbound traffic.
4.
Select Session Cache if you want to cache keys until the time specified in Session Cache Timeout elapses. This can improve performance. If keys are not cached, each request is negotiated again.
5.
Indicate, in seconds, how long keys should be kept in the cache. The default is 300 seconds (5 minutes).
6.
The cipher list describes available algorithms and level of encryption between the client and SSL Manager. The default settings indicate to use all available ciphers except the eNULL and the ADH Suite. The strongest cipher (providing the highest level of encryption) is applied first. This can be set to a different level of encryption than for inbound traffic. Setting encryption to a high level for outbound traffic can help ensure the integrity and security of your system.
Additional cipher settings are:
*
High encryption cipher suites: those with key lengths larger than 128 bits, and some cipher suites with 128-bit keys.
*
Medium encryption cipher suites: those using 128 bit encryption.
*
Low encryption cipher suites: those using 64- or 56-bit encryption algorithms but excluding export cipher suites.
For outbound requests (requests from SSL Manager to the destination server that is receiving the encrypted data), consider using one of the higher encryption levels to improve security.
For more information on ciphers, refer to www.openssl.org/docs.
7.
Click Apply.
8.
Click Restart on Configure > My Proxy > Basic > General.
Print print article Email email article Font Size: A A

Search

Article Rating:

Do you have any additional feedback?    Email: close

Related Articles

Quick Links

Service Requests

How are we doing?

Provide us feedback on your experience with the Service Request portal.

provide feedback >

Go to the table of contents Go to the previous page Go to the next page Go to the index View or print as PDF
Working With Encrypted Data > Decryption and Encryption > Configuring SSL Manager for outbound traffic