Line: 1 to 1 | ||||||||
---|---|---|---|---|---|---|---|---|
| ||||||||
Deleted: | ||||||||
< < | APPX Client EncryptionAPPX now includes the ability to encrypt login data, session data, and file transfers. | |||||||
Changed: | ||||||||
< < | ||||||||
> > | APPX Desktop Client EncryptionEffective with Release 5.0.0, the APPX Desktop Client includes an option to enable SSL encryption for APPX Desktop Client sessions. | |||||||
Changed: | ||||||||
< < | The APPX Connection Manager, and APPX Desktop Client by default will encrypt the data stream with SSL encryption. This datastream includes login ID, password, and all session data. You may optionally: | |||||||
> > | ||||||||
Changed: | ||||||||
< < |
| |||||||
> > | Release 5.0.0 of the APPX Desktop Client allows SSL encryption to optionally be enabled for APPX Desktop Client sessions connecting to APPX 5.0.0 or higher. The APPX SSL encryption feature encrypts all data transmitted between the APPX Desktop Client and the APPX server includes login ID, password, all session data, all reports printed by the client, and all files transferred between the client and the server. The APPX Desktop Client can only establish an encrypted SSL connection with an APPX Login Manager that has been properly configured to accept SSL connection requests from clients. The APPX Login Manager may require that the APPX Desktop Client enable SSL encryption. Furthermore, the APPX Login Manager may require that the APPX Desktop Client identify itself by providing an acceptable SSL certificate. | |||||||
| ||||||||
Deleted: | ||||||||
< < |
| |||||||
Changed: | ||||||||
< < | APPX Desktop Client parameters available for SSL datastream encryption.Upon initial startup of the APPX Desktop Client, just prior to logging in, there are three tabs available, Local, Remote, and Options. Select Options, and then click the Advanced button. You should now see four many options available broken up into sections, one of which is labeled [SSL]. In the SSL section are five options. | |||||||
> > | APPX Desktop Client SSL Preferences | |||||||
Added: | ||||||||
> > | The APPX Desktop Client provides five preferences (parameters) relating to SSL connection requests. | |||||||
SSLMode | ||||||||
Changed: | ||||||||
< < |
| |||||||
> > |
| |||||||
SSLAnonAllowed | ||||||||
Changed: | ||||||||
< < |
| |||||||
> > |
This preference determines whether or not the APPX Desktop Client is allowed to connect to an APPX Server that does not have a signed SSL certificate.
| |||||||
SSLMismatchAllowed | ||||||||
Changed: | ||||||||
< < |
SSLSelfSignedAllowed -
SSLHandshakeTimeout - | |||||||
> > |
This preference determines whether or not the APPX Desktop Client
SSLSelfSignedAllowedThis preference determines whether or not the APPX Desktop Client is allowed to connect to an APPX Server that has a self-signed SSL certificate.
SSLHandshakeTimeoutThis preference specifies the length of time in seconds that the client is to wait after attempting to establish an SSL connection with the APPX Login Manager. If the specified amount of time passes without establishing an SSL connection, then the SSLMode preference will determine what additional action, if any, takes place. | |||||||
APPX Connection Manager SSL parameters.RequireSSL - Not Implemented. Do not Use. | ||||||||
Changed: | ||||||||
< < |
| |||||||
> > |
| |||||||
RequireSSLClientCertificates | ||||||||
Changed: | ||||||||
< < |
| |||||||
> > |
| |||||||
ServerCertificateFile - This is the server's SSL public certificate
ServerPrivateKeyFile - This is the server's SSL private server key | ||||||||
Line: 55 to 60 | ||||||||
How to create a server's SSL private server key and server's SSL public certificate from the Unix/Linux command line with the openssl tool.Create new private/public-keys without passphrase for server | ||||||||
Changed: | ||||||||
< < | openssl genrsa -out tubes.internal.appx.com.private.key 1024 | |||||||
> > | openssl genrsa -out tubes.internal.appx.com.private.key 1024 | |||||||
Create server's SSL public certificate | ||||||||
Changed: | ||||||||
< < | openssl req -new -days 365 -key tubes.internal.appx.com.private.key -x509 -out tubes.internal.appx.com.crt | |||||||
> > | openssl req -new -days 365 -key tubes.internal.appx.com.private.key -x509 -out tubes.internal.appx.com.crt | |||||||
Suggested Behavior: |