Server Configuration > Post Install Server Security > Secure Sockets Layer
  
Secure Sockets Layer
The Secure Sockets Layer (SSL) protocol of the Windchill RV&S server provides robust security for access across the Internet. When users connect through SSL, the connection ensures privacy, authentication, and message integrity.
The SSL protocol enables encrypted, authenticated communication across the Internet. In an SSL connection, the server must have a security certificate. Each side then encrypts the data it sends ensuring the information can only be read by the intended recipient.
The Windchill RV&S server disables SSLv2, SSLv3, and TLSv1. By default, the Windchill RV&S server enables TLSv1.2 and TLSv1.3. It can be configured to enable TLSv1.2 and TLSv1.3.
The Windchill RV&S server complies with US Encryption Export Control Regulations. By default, the encryption strength for the SSL is 128 bit encryption.
To use the Windchill RV&S server with SSL enabled, you must obtain a server certificate for the machine running the Windchill RV&S server.
When SSL is enabled for the server, the Web browser client confirms the:
certificate has been signed by a recognized certificate authority (CA)
current date falls within the certificate’s valid date range
When generating a new certificate, the following are possible scenarios for using server certificates:
Certificate is being signed by a well-known CA.
Certificate is being signed by CA that may not be well-known.
You are using the new certificate as self-signed.
Connections for which SSL Is Supported
Enabling SSL
Creating Signed Server Certificates
Renewing Signed Server Certificates
Enabling Unlimited Strength Cryptography
FIPS Support