TechSwitch ~ Nexus of Technology

Secure Servers with SSL Implementation : Taking example as IHS and configuring secure website in WebServer. Installing SSL on HIS     1)Open ./ikeyman.sh utility from AppServer to create .kdb file Create a new key database file , Default will be CMS Edit filename Ex:hostname-key.kdb Input password and select stash password to a file 2) Create a self signed certificate Fill the details of Self Signed cert 3) Edit the following in httpd.conf and restart http serv 1 2 3 4 5 6 7 8 9 LoadModule ibm_ssl_module modules/mod_ibm_ssl.so Listen 443 <VirtualHost *:443> SSLEnable #SSLProtocolDisable SSLv2 </VirtualHost> KeyFile /opt/IBM/HTTPServer/cert/sunnysite.kdb SSLStashFile /opt/IBM/HTTPServer/cert/sunnysite.sth SSLDisable Now try your website url with https. To support encrypted connections, create a self-signed certificate and then configure IBM HTTP Server for encrypte...

The client sends the server the client’s SSL version number, cipher settings, randomly generated data, and other information the server needs to communicate with the client using SSL The server sends the client the server’s SSL version number, cipher settings, randomly generated data, and other information the client needs to communicate with the server over SSL. The server also sends its own certificate and, if the client is requesting a server resource that requires client authentication, requests the client’s certificate. The client can use some of the information sent by the server to authenticate the server. For details, see  Server Authentication During SSL Handshake . If the server cannot be authenticated, the user is warned of the problem and informed that an encrypted and authenticated connection cannot be established. If the server can be successfully authenticated, the client goes on to Step 4. Using all data generated in the handshake so far, the client, w...