Library Search:


Go to the table of contents Go to the previous page Go to the next page
Websense Web Security SSL Certificates : SSL certificates for secure manual authentication

SSL certificates for secure manual authentication
Topic 50142 / Updated: 10-Jun-2010
Applies To:
Websense Web Filter 7.5
Websense Web Security 7.5
Secure manual authentication uses Secure Sockets Layer (SSL) encryption to protect data being transmitted between client machines and Websense software. An SSL server built into Filtering Service provides encryption of user names and passwords transmitted between client machines and Filtering Service. By default, secure manual authentication is disabled.
To enable this functionality, you must perform 3 basic steps:
1.
Generate SSL certificates and keys, and place them in a location accessible by Websense software and readable by Filtering Service.
A certificate consists of a public key, used to encrypt data, and a private key, used to decipher data. Certificates are issued by a Certificate Authority (CA). You can generate a self-signed certificate using a number of free or low-cost tools, or obtain a client certificate from any third-party CA, such as VeriSign.
2.
Enable secure manual authentication and secure communication with the directory service.
3.
Install (or permanently accept) certificates in each client browser.
Websense software uses a certificate to secure TRITON - Web Security communications. If you have installed TRITON - Web Security on a Microsoft Windows machine:
*
If Filtering Service is installed on the same machine as TRITON - Web Security, and both components use the same IP address, you can optionally reuse the default certificate to enable secure manual authentication. Simply copy the server.crt and server.key files from the Websense\apache\conf\ssl directory to the to the Websense\bin directory, and then see Enabling secure manual authentication.
*
Use the batch files and OpenSSL toolkit installed with TRITON - Web Security to generate a certificate and key for Filtering Service. See Generating self-signed SSL certificates. This is your simplest option if Filtering Service does not share an IP address with TRITON - Web Security.

Quick Links




Go to the table of contents Go to the previous page Go to the next page
Websense Web Security SSL Certificates : SSL certificates for secure manual authentication
(c) 2010 Websense, Inc. All Rights Reserved.