Configuring Security Globally
Installing an SSL-enabled server creates directive entries in the magnus.conf file (the server’s main configuration file) for global security parameters. Security must be set to 'on’ for virtual server security settings to work. SSL properties for virtual servers can be found on a per-server basis in the SSLPARAMS element of the server.xml file.
To set values for your SSL configuration file directives, perform the following steps
To set values for your SSL configuration file directives
-
Access the Server Manager and select the server instance of the virtual server from the drop-down list.
-
Ensure that security is enabled for the listen socket you want to configure. To enable security, perform the following steps:
-
Click the Magnus Editor link.
-
Select SSL Settings from the drop-down list and click Manage.
-
Enter the values for:
-
Click OK
-
Click Apply, and then Restart for changes to take effect.
These SSL Configuration File Directives are described below:
SSLSessionTimeout
The SSLSessionTimeout directive controls SSL2 session caching.
Syntax
SSLSessionTimeout seconds
seconds is the number of seconds until a cached SSL session becomes invalid. The default value is 100. If the SSLSessionTimeout directive is specified, the value of seconds is silently constrained to be between 5 and 100 seconds.
SSLCacheEntries
Specifies the number of SSL sessions that can be cached.
SSL3SessionTimeout
The SSL3SessionTimeout directive controls SSL3 and TLS session caching.
Syntax
SSL3SessionTimeout seconds
seconds is the number of seconds until a cached SSL3 session becomes invalid. The default value is 86400 (24 hours). If the SSL3SessionTimeout directive is specified, the value of seconds is silently constrained to be between 5 and 86400 seconds.
- © 2010, Oracle Corporation and/or its affiliates