Using SSL for secure administration

TRITON AP-WEB supports the Secure Sockets Layer protocol (SSL) to provide protection for remote administrative monitoring and configuration using the Content Gateway manager. SSL security provides authentication of both ends of a network connection using certificates, and provides privacy using encryption.

To use SSL you must:

Obtain an SSL certificate

Enable the Content Gateway manager SSL option

Obtaining an SSL certificate

Help | Content Gateway | Version 8.2.x

You can obtain an SSL certificate from a recognized certificate authority (for example, VeriSign) or, if you use Active Directory Certificate Services, you can generate a certificate using Certificate Services and a script provided with your Content Gateway software. (See Creating an SSL Certificate for Content Gateway manager with Active Directory Certificate Services.)

Install the certificate in the Content Gateway config directory (/opt/WCG/bin). You must either rename the certificate to the default filename private_key.pem, or specify the name of the certificate in the Content Gateway manager (follow the procedure in Enabling SSL).

Enabling SSL

Help | Content Gateway | Version 8.2.x

After you have obtained an SSL certificate, you can enable SSL.

Navigate to the Configure > My Proxy > UI Setup > General tab.

Enable the HTTPS option.

In the Certificate File field, specify the filename of the SSL certificate.

You have to change the file name only if the certificate file does not use the default name private_key.pem.

Click Apply.