Configuring Security Globally

Installing an SSL-enabled server creates directive entries in the magnus.conf file (the server’s main configuration file) for global security parameters.

To set values for SSL configuration file directives

Steps

1. Access the Server Manager for a server instance.

2. Ensure that security is enabled for the listen socket you want to configure.

   For more information, see Enabling Security for Listen Sockets.

3. Manually edit the magnus.conf file and enter values for the following settings:

   • SSLSessionTimeout

     • SSLCacheEntries

     • SSL3SessionTimeout

       These SSL configuration file directives are described below. For more information about magnus.conf, see the Proxy Server 4.0.3 Configuration File Reference.

SSLSessionTimeout

The SSLSessionTimeout directive controls SSL 2.0 session caching.

Syntax

SSLSessionTimeout seconds

where seconds is the number of seconds until a cached SSL session becomes invalid. The default value is 100. If the SSLSessionTimeout directive is specified, the value of seconds is silently constrained to be between 5 and 100 seconds.

SSLCacheEntries

Specifies the number of SSL sessions that can be cached.

SSL3SessionTimeout

The SSL3SessionTimeout directive controls SSL 3.0 and TLS session caching.

Syntax

SSL3SessionTimeout seconds

where seconds is the number of seconds until a cached SSL 3.0 session becomes invalid. The default value is 86400 (24 hours). If the SSL3SessionTimeout directive is specified, the value of seconds is silently constrained to be between 5 and 86400 seconds.