When you configure encryption and client authentication, you must decide between hard and soft security modes. Security mode can be configured separately for encryption requirements including server authentication and for client authentication requirements. Security mode settings are intended for compatibility with older firmware, which did not support the affected security feature.
Hard Security Mode - Hard security mode ensures that every session is secure. If security requirements cannot be met, the session is refused.
Soft Security Mode - Soft security mode ensures that connection requests are granted even for Sun Ray Clients that don't support the configured security requirements. If security requirements cannot be met, the session is granted but not secure.
By default, the security modes for encryption and client authentication are both set to soft, which allows unauthenticated and unencrypted access to Sun Ray Clients running older firmware.
Security mode settings don't apply to Oracle Virtual Desktop Clients. Oracle Virtual Desktop Clients will always be treated as if hard security mode for encryption or authentication is in effect.
Table 11.1, “Security Modes” describes what happens when the different security modes are used.
Table 11.1. Security Modes
Situation | Hard Security Mode | Soft Security Mode |
---|---|---|
Encryption - The Sun Ray Client does not support encryption or server authentication because of old firmware. | Sun Ray server denies the session. | Sun Ray server grants the client a non-secure session. The user must then decide whether to continue using a non-secure session. |
Client Authentication - The Sun Ray Client does not support client authentication because of old firmware. | Sun Ray server denies the session. | Sun Ray server grants the client a non-secure session. |
Client Authentication - The client supports authentication, but the authentication fails. | Sun Ray server denies the session. | Sun Ray server denies the session. |