SSL-Enabled AppServer Reference
  
SSL-Enabled AppServer Reference
This section provides information on how to enable an AppServer for SSL and how to set up an SSL Java client on a Linux server. IntroductionGives brief information about Secure Sockets Layer (SSL). Enabling SSL for AppServersExplains how to enable SSL for AppServers. Enabling SSL for Java Clients of an AppServerExplains how to enable SSL for Java clients. Configuring Connection Pools for SSL-Enabled AppServerExplains how to configure connection pools for SSL-enabled AppServer. Configuring Outbound for SSL-Enabled QXOUI AppServerExplains how to configure QXO for SSL-enabled QXOUI AppServer. Other Configurations for SSL-Enabled AppServerIncludes additional configurations on QXtend UI and summarizes all configuration required for using SSL-enabled AppServer. Summary of QXtend Configurations for SSL-Enabled AppServerLists all required configurations for SSL-enabled AppServer. LimitationsDescribes the limitation of SSL connection on OE11.1 and the workaround.
Introduction
You can use the Secure Sockets Layer (SSL) to provide a security infrastructure that protects AppServer communications both on the Internet and the intranet. SSL provides data privacy over network connections and authentication between clients and servers on those connections using elements of Public Key Infrastructure (PKI). These elements include private and public keys. The clients and servers use the keys to authenticate each other and to set up data encryption and decryption services between the SSL client and SSL server. The server is identified by the private key that it stores. The client is identified as a valid SSL client for that server by the public key that it stores and provides to the server. SSL clients gain access to public keys using digital (public key) certificates. The Certificate Authority (CA) provides the public key and the private key confidentially to the SSL server. In QXtend Inbound, the SIAPI and the FinAPI connection pool can connect to the AppServer by a a secure connection. The connection depends on the settings on the Configuration Settings Update page for the SIAPI or FinAPI connection pool. When the AppServer Secure Connect option is checked and the correct directory of the public key is specified, the connection to the AppServer is secured with SSL.To secure the connection between the connection pool and the AppServer with SSL, configure:
The AppServer as an SSL-enabled server
The AppServer client (connection pool) as an SSL client