Security certificates

The BMC Defender Apache TLS adapter uses industry-standard security certificates to authenticate connections to the server. These certificates are used to authenticate the site so that browser-based users can confirm that they are talking to the BMC Defender Server and not a spoofed version of the program. 

Related topics

BMC-Defender-Apache-TLS-adapter-deprecated

BMC-Defender-Apache-TLS-adapter-security-features


Note

Malicious users are prevented from setting up a copy of BMC Defender within the enterprise and then redirecting DNS services to a false copy of BMC Defender (a process commonly known as spoofing).

The actual mechanism supported by TLS is as follows:

  1. You request a BMC Defender Server web page using https:// in the URL.
  2. The BMC Defender Server sends its public key and certificate back to your web browser. 
  3. The browser checks that a trusted party issued the certificate.
  4. The browser notifies you of any errors with the certificate, or the browser generates an encryption key for the transmission back to the BMC Defender Server, that gets used in the remaining communication processes.

This section provides information about the following topics:

 

Tip: For faster searching, add an asterisk to the end of your partial query. Example: cert*