Oracle® Secure Global Desktop

Gateway Administration Guide for Release 5.5

Oracle Legal Notices
Oracle Documentation License

June 2019


Table of Contents

1 Installing the SGD Gateway
1.1 About the SGD Gateway
1.2 System Requirements
1.2.1 Network Requirements
1.2.2 Known Issues
1.3 Performing the Installation
1.3.1 How To Install the SGD Gateway
1.4 Upgrading the SGD Gateway
2 Configuring the SGD Gateway
2.1 Deploying the SGD Gateway
2.1.1 Basic Deployment
2.1.2 Load-Balanced Deployment
2.1.3 Single Host Gateway Deployment
2.2 SGD Gateway Configuration Tasks
2.2.1 Client Device to SGD Gateway Connections
2.2.2 SGD Gateway to SGD Server Connections
2.2.3 Client Device to Load Balancer Connections
2.2.4 Load Balancer to SGD Gateway Connections
2.3 Controlling the SGD Gateway
2.3.1 Starting the SGD Gateway
2.3.2 Stopping the SGD Gateway
2.3.3 Restarting the SGD Gateway
2.4 Removing the SGD Gateway
2.4.1 How To Remove the SGD Gateway
A SGD Gateway Architecture Overview
A.1 SGD Gateway Architecture
A.2 Components of the SGD Gateway
A.2.1 About Routing Tokens
A.2.2 Keystores Used By the SGD Gateway
A.2.3 Routing Proxy Configuration File
A.2.4 Apache Web Server Configuration Files
A.2.5 Apache Modules Used by the SGD Gateway
B Command-Line Reference
B.1 The gateway Command
B.2 gateway cert export
B.3 gateway clientcert
B.4 gateway clientcert import
B.5 gateway clientcert list
B.6 gateway clientcert remove
B.7 gateway config
B.8 gateway config create
B.9 gateway config disable
B.10 gateway config edit
B.11 gateway config enable
B.12 gateway config list
B.13 gateway connection
B.14 gateway connection list
B.15 gateway key import
B.16 gateway patch
B.17 gateway patch add
B.18 gateway patch list
B.19 gateway patch remove
B.20 gateway restart
B.21 gateway server
B.22 gateway server add
B.23 gateway server list
B.24 gateway server remove
B.25 gateway sslcert
B.26 gateway sslcert export
B.27 gateway sslcert print
B.28 gateway sslkey
B.29 gateway sslkey export
B.30 gateway sslkey import
B.31 gateway start
B.32 gateway status
B.33 gateway stop
B.34 gateway uninstall
B.35 gateway version
B.36 The tarantella gateway Command
B.37 tarantella gateway add
B.38 tarantella gateway list
B.39 tarantella gateway remove
B.40 tarantella gateway token
B.41 The --security-gateway Attribute
C Advanced Configuration
C.1 Tuning the SGD Gateway
C.1.1 Changing the Maximum Number of AIP Connections
C.1.2 Changing the Maximum Number of Websocket Connections
C.1.3 Changing the Maximum Number of HTTP Connections
C.1.4 Changing the JVM Memory Size
C.2 Configuring Data Compression for Connections to Tablet Devices
C.3 Configuring HTTP Redirection
C.4 Changing the Binding Port for the SGD Gateway
C.5 Discovering an SGD Gateway
C.5.1 Discovering and Configuring a Single Host Gateway Deployment
C.5.2 Undoing Discovery and Reconfiguring a Single Host Gateway Deployment
C.6 Configuring IPv6 Support for the SGD Gateway
C.7 Using External SSL Accelerators
C.7.1 Enabling External SSL Accelerator Support
C.8 Configuring Ciphers for the SGD Gateway
C.8.1 Configuring Cipher Suites for the Gateway
C.9 Using Client Certificates With the SGD Gateway
C.9.1 Using Client Certificates for Access Control
C.9.2 Using Client Certificates for SGD Authentication
C.9.3 Generating a CSR for a Client Certificate
C.10 Enabling the Balancer Manager Application
C.11 The Reflection Service
C.11.1 Enabling the Reflection Service
C.11.2 Using the Reflection Service
C.12 Enhanced Client IP Address Information for an SGD Gateway Deployment
C.12.1 Displaying Client IP Addresses
D Troubleshooting the SGD Gateway
D.1 Logging and Diagnostics
D.1.1 About SGD Gateway Logging
D.1.2 Displaying SGD Gateway Process Information
D.1.3 Checking the Configuration From the Command Line
D.2 Changing the Peer DNS Name of an SGD Server
D.3 SGD Gateway Error Messages