Server Configuration > Post Install Server Security > Secure Sockets Layer
 
Secure Sockets Layer
The Secure Sockets Layer (SSL) protocol of the Integrity Lifecycle Manager server provides robust security for access across the Internet. When users connect through SSL, the connection ensures privacy, authentication, and message integrity.
The SSL protocol enables encrypted, authenticated communication across the Internet. In an SSL connection, the server must have a security certificate. Each side then encrypts the data it sends ensuring the information can only be read by the intended recipient.
The Integrity Lifecycle Manager server disables SSLv2 and SSLv3, and enables TLSv1, TLSv1.1, and TLSv1.2.
The Integrity Lifecycle Manager server complies with US Encryption Export Control Regulations. By default, the encryption strength for the SSL is 128 bit encryption.
To use the Integrity Lifecycle Manager server with SSL enabled, you must obtain a server certificate for the machine running the Integrity Lifecycle Manager server.
When SSL is enabled for the server, the Web browser client confirms the:
certificate has been signed by a recognized certificate authority (CA)
current date falls within the certificate’s valid date range
When generating a new certificate, the following are possible scenarios for using server certificates:
Certificate is being signed by a well-known CA.
Certificate is being signed by CA that may not be well-known.
You are using the new certificate as self-signed.
Connections for which SSL Is Supported
Enabling SSL
Creating Signed Server Certificates
Renewing Signed Server Certificates
Enabling Unlimited Strength Cryptography
FIPS Support