Using SSL for Connections
If SSL is to be used for connections between the CM agents this must be defined at the installation of the respective agents. The value is specified in the agent configuration file ( mtxagent.ini).
There you also define which type of SSL connection is used via the following parameter and its options. This parameter is also applicable for connections between the CM console and its server:
Parameter | Description | |
---|---|---|
SSL | This parameter defines whether the agent accepts and sends secure or non-secure communications. The possible values are integers between 0 and 3:
|
This parameter is defined at installation time of the components, or in case of the console, when it is launched. However, it can be modified at any time via the agent parameter settings in the Console or in the respective configuration files. The way the console connects to the server can be newly defined each time a connection is established.
The agents must communicate in a secure mode, using either SSL=2 or SSL=3. The security dashboard warns if insecure communication is permitted, that is, the SSL value is less than 2. If all agents communicate only in secure mode the console also must be activated with SSL when connecting to a device by checking the respective box in the console launch window. Otherwise, if a non-SSL connection is established between console and agent, it will immediately be closed again by the agent.
Comments
Log in or register to comment.