Exit Print View

Oracle Secure Global Desktop Gateway Administration Guide for Version 4.6

Document Information

Preface

1.  Installing the SGD Gateway

2.  Configuring the SGD Gateway

A.  SGD Gateway Architecture Overview

B.  Command-Line Reference

C.  Advanced Configuration

Tuning the SGD Gateway

Changing the Maximum Number of AIP Connections

Calculating the Number of AIP Connections

Changing the Maximum Number of HTTP Connections

Changing the JVM Memory Size

Calculating the JVM Memory Size

Configuring HTTP Redirection

Changing the Binding Port for the SGD Gateway

Using Unencrypted Connections to the SGD Array

Using External SSL Accelerators

How to Enable External SSL Accelerator Support

Using Client Certificates With the SGD Gateway

How to Configure the SGD Gateway to Use Client Certificates

Enabling the Balancer Manager Application

The Reflection Service

Enabling the Reflection Service

How to Enable Unauthorized Access to the Reflection Service

How to Enable Authorized Access to the Reflection Service

Using the Reflection Service

About the RESTful Web Services

Examples of Using the Reflection Service

D.  Troubleshooting the SGD Gateway

How to Enable Unauthorized Access to the Reflection Service

  1. Log in as superuser (root) on the SGD Gateway host.
  2. Enable unauthorized access to the reflection service.
    # /opt/SUNWsgdg/bin/gateway config enable --services-reflection
  3. (Optional) Change the interface used by the reflection service.

    Caution

    Caution - By default, unauthenticated access to the reflection service is only available from the SGD Gateway host. Enabling unauthenticated access on other interfaces can present a security risk.


    The default interface used for unauthorized access to the reflection service is the localhost loopback interface. The following example shows how to enable unauthorized access on all interfaces:

    # /opt/SUNWsgdg/gateway config edit \
    --services-reflection-binding *:81
  4. (Optional) Change the port used by the reflection service.

    The default port used for unauthorized access to the reflection service is TCP port 81. You can change this to another port that is not in use, as follows:

    # /opt/SUNWsgdg/gateway config edit \
    --services-reflection-binding localhost:portnum

    where portnum is the port number used by the reflection service.

  5. Restart the SGD Gateway.
    # /opt/SUNWsgdg/bin/gateway restart
  6. Access the reflection service.

    On the SGD Gateway host, you can start a browser and go to http://localhost:81.

    The home page for the reflection service is shown.