Oracle® Communications Calendar Server Security Guide Release 7.0.5 E54936-01 |
|
|
PDF · Mobi · ePub |
This chapter presents planning information for your Oracle Communications Calendar Server system and describes recommended deployment topologies that enhance security.
For more information about installing Calendar Server, see Calendar Server Installation and Configuration Guide.
Calendar Server is deployed within GlassFish Server. When installing and configuring GlassFish Server:
Configure HTTPS and disable HTTP
Configure the JMX Port for GlassFish Server to use SSL
Configure GlassFish Server to prevent Denial of Service (DoS) attacks
To configure and administer GlassFish Server security, see Oracle GlassFish Server Security Guide.
Calendar Server can use either MySQL Server or Oracle Database as the database for storing contact information. For information on how to install and configure either MySQL Server or Oracle Database, see Calendar Server Installation and Configuration Guide.
The installation prompts for authentication credentials for the following:
Database user
GlassFish Server administrator
Directory Server manager (bind DN and password)
Calendar Server administrator
After installation, configuring Calendar Server for a secure deployment involves a number of steps:
Make sure that HTTPS is configured correctly on the front-end GlassFish Server host:
Use a CA signed certificate
Set SSL port to default port of 443 to ease client configurations
Change the fulluriprefix
configuration option
Disable HTTP on the front-end GlassFish Server host
Configure JMX port for GlassFish Server to use SSL
Enable LDAP SSL, if not previously done
Enable secure notification mail submission
Configure SSL on back ends
Set up secure communication to the Calendar Server database
Set up secure communications to the remote document store
Add LDAP access control for Calendar Server
See "Implementing Calendar Server Security" for more information.