Configuring SSL Service on the i-Planet Server
The default installation configures the i-Planet server for communication with the gateway so that it can use both SSL service and clear (plaintext) communication. By default SSL from the i-Planet server to the i-Planet gateway is disabled.
If you enable or disable SSL service on the i-Planet server, you must also enable or disable it on the i-Planet gateway.
If you are enabling SSL service after you have installed the i-Planet software, you must use the default port 443. Both the i-Planet server and the i-Planet gateway must use the same port number for SSL service.
When you are using SSL service for communication between the i-Planet server and the i-Planet gateway, use the URL below to connect to the Administration Console, if you are using the default port 443:
https://i-Planet_server.domain/console
Use the URL below to connect to the Administration Console, if you are using a port other than port 443:
https://i-Planet_server.domain:port/console The port number that you use here must be the one that you specified in the custom installation. Both the i-Planet server and the i-Planet gateway must use the same port number for SSL service.
You can switch between communicating with the i-Planet server and the i-Planet gateway using SSL service and communicating in the clear. If you switch the i-Planet server so that it is communicating using SSL (or in the clear), you must also switch the i-Planet gateway so that it is using the same mode of communication as the i-Planet server. The default installation configures the Java web server for both http and https services, but the https service is disabled.
Note -
If you used the default installation settings and then decide to turn on SSL service for communication between the i-Planet gateway and the i-Planet server using the command below, the default port 443 is used. If you want to use a different port, you must have specified that port when you installed the i-Planet software using the custom installation.
To Enable SSL Service on the i-Planet Server
-
As root, type the following command to enable encrypted communication using SSL service from the i-Planet server with the i-Planet gateway.
# /opt/SUNWjeev/bin/iplanet_serv ssl on
If you installed the i-Planet software using the default installation, the default SSL port 443 will be used. If you used the customized installation and specified another port for SSL, that port will be used.
-
Stop and restart the web server before the SSL service will be started.
See the procedure "To Stop and Restart the Web Server on the i-Planet Server" in Chapter 3, Other Administrative Tasks.
To Disable SSL Service on the i-Planet Server
-
As root, type the following command to disable SSL service if you want to communicate with the i-Planet gateway in the clear.
# /opt/SUNWjeev/bin/iplanet_serv ssl off
-
Stop and restart the web server before the SSL service will be stopped.
See the procedure "To Stop and Restart the Web Server on the i-Planet Server" in Chapter 3, Other Administrative Tasks.
- © 2010, Oracle Corporation and/or its affiliates