Oracle® Secure Global Desktop

Gateway Administration Guide for Release 4.7

Oracle Legal Notices

E26355-01

August 2012

Abstract

This guide describes how to install, configure, and operate the Oracle Secure Global Desktop Gateway.

Document generated on: 2012-08-06 (revision: 1018)


Table of Contents

Preface
1. Audience
2. Document Organization
3. Documentation Accessibility
4. Related Documents
5. Conventions
1. Installing the SGD Gateway
1.1. About the SGD Gateway
1.2. System Requirements
1.2.1. Known Issues
1.3. Performing the Installation
1.3.1. How To Install the SGD Gateway
1.4. Upgrading the SGD Gateway
1.4.1. How to Upgrade the SGD Gateway
2. Configuring the SGD Gateway
2.1. Deploying the SGD Gateway
2.1.1. Basic Deployment
2.1.2. Load-Balanced Deployment
2.2. SGD Gateway Configuration Tasks
2.2.1. Client Device to SGD Gateway Connections
2.2.2. SGD Gateway to SGD Server Connections
2.2.3. Client Device to Load Balancer Connections
2.2.4. Load Balancer to SGD Gateway Connections
2.3. Controlling the SGD Gateway
2.3.1. Starting the SGD Gateway
2.3.2. Stopping the SGD Gateway
2.3.3. Restarting the SGD Gateway
2.4. Removing the SGD Gateway
2.4.1. How To Remove the SGD Gateway
A. SGD Gateway Architecture Overview
A.1. SGD Gateway Architecture
A.2. Components of the SGD Gateway
A.2.1. About Routing Tokens
A.2.2. Keystores Used By the SGD Gateway
A.2.3. Routing Proxy Configuration File
A.2.4. Apache Web Server Configuration Files
A.2.5. Apache Modules Used by the SGD Gateway
B. Command-Line Reference
B.1. The gateway Command
B.2. gateway cert export
B.3. gateway config
B.4. gateway config create
B.5. gateway config disable
B.6. gateway config edit
B.7. gateway config enable
B.8. gateway config list
B.9. gateway key import
B.10. gateway restart
B.11. gateway server
B.12. gateway server add
B.13. gateway server list
B.14. gateway server remove
B.15. gateway setup
B.16. gateway sslcert
B.17. gateway sslcert export
B.18. gateway sslcert print
B.19. gateway sslkey
B.20. gateway sslkey export
B.21. gateway sslkey import
B.22. gateway start
B.23. gateway status
B.24. gateway stop
B.25. gateway uninstall
B.26. gateway version
B.27. The tarantella gateway Command
B.28. tarantella gateway add
B.29. tarantella gateway list
B.30. tarantella gateway remove
B.31. The --security-gateway Attribute
C. Advanced Configuration
C.1. Tuning the SGD Gateway
C.1.1. Changing the Maximum Number of AIP Connections
C.1.2. Changing the Maximum Number of HTTP Connections
C.1.3. Changing the JVM Memory Size
C.2. Configuring HTTP Redirection
C.3. Changing the Binding Port for the SGD Gateway
C.4. Using Unencrypted Connections to the SGD Array
C.4.1. Configuring the Gateway to Use Unencrypted Connections to the SGD Array
C.5. Using External SSL Accelerators
C.5.1. How to Enable External SSL Accelerator Support
C.6. Configuring Ciphers for the SGD Gateway
C.6.1. How to Configure Ciphers for the Gateway
C.7. Using Client Certificates With the SGD Gateway
C.7.1. How to Configure the SGD Gateway to Use Client Certificates
C.7.2. How to Generate a CSR for a Client Certificate
C.8. Enabling the Balancer Manager Application
C.9. The Reflection Service
C.9.1. Enabling the Reflection Service
C.9.2. Using the Reflection Service
D. Troubleshooting the SGD Gateway
D.1. Logging and Diagnostics
D.1.1. About SGD Gateway Logging
D.1.2. Displaying SGD Gateway Process Information
D.1.3. Checking the Configuration From the Command Line
D.2. Changing the Peer DNS Name of an SGD Server
D.3. SGD Gateway Error Messages