Go to the table of contents Go to the previous page Go to the next page
Websense Web Security SSL Certificates : SSL certificates for secure manual authentication

Secure manual authentication uses Secure Sockets Layer (SSL) encryption to protect data being transmitted between client machines and Websense software. An SSL server built into Filtering Service provides encryption of user names and passwords transmitted between client machines and Filtering Service. By default, secure manual authentication is disabled.
1.
Generate SSL certificates and keys, and place them in a location accessible by Websense software and readable by Filtering Service.
A certificate consists of a public key, used to encrypt data, and a private key, used to decipher data. Certificates are issued by a Certificate Authority (CA). You can generate a self-signed certificate using a number of free or low-cost tools, or obtain a client certificate from any third-party CA, such as VeriSign.
Websense software uses a certificate to secure TRITON - Web Security communications. If you have installed TRITON - Web Security on a Microsoft Windows machine:
*
If Filtering Service is installed on the same machine as TRITON - Web Security, and both components use the same IP address, you can optionally reuse the default certificate to enable secure manual authentication. Simply copy the server.crt and server.key files from the Websense\apache\conf\ssl directory to the to the Websense\bin directory, and then see Enabling secure manual authentication.
*
Use the batch files and OpenSSL toolkit installed with TRITON - Web Security to generate a certificate and key for Filtering Service. See Generating self-signed SSL certificates. This is your simplest option if Filtering Service does not share an IP address with TRITON - Web Security.



Go to the table of contents Go to the previous page Go to the next page
Websense Web Security SSL Certificates : SSL certificates for secure manual authentication