Macromedia breeze 5 ユーザーガイド
78
Chapter 4: Post-installation
You can deploy Breeze with an SSL layer in one of the following ways:
•
A software-based solution by configuring the native support for SSL in Flash Communication
Server (FCS).
Server (FCS).
Use this option if you want to secure only Breeze and not the web application. You will need 2
IP addresses (2 DNS entries for the IP addresses) and 1 SSL certificate. You will need to
modify SSL tags in the Flash Adaptor.xml and Server.xml files configuration files.
IP addresses (2 DNS entries for the IP addresses) and 1 SSL certificate. You will need to
modify SSL tags in the Flash Adaptor.xml and Server.xml files configuration files.
The default location of the FCS configuration files is: c:\breeze\serv.
•
A hardware-based solution that routes all communication through an external SSL accelerator.
Use this option if you want to secure both FCS and the Breeze application. You will need 2 IP
addresses - 2 DNS entries for the IP addresses -- and 2 SSL certificates.
addresses - 2 DNS entries for the IP addresses -- and 2 SSL certificates.
You need to purchase the accelerator separately. Consult the vendor’s documentation for
instructions about how to configure the accelerator.
instructions about how to configure the accelerator.
When you use Breeze with an SSL hardware accelerator, all logins to Breeze are sent over the
secured protocol HTTPS.
secured protocol HTTPS.
With SSL, all presentations and meetings are conducted over fully encrypted HTTPS or
RTMPS connections. The Breeze server uses port 443 for encrypted traffic.
RTMPS connections. The Breeze server uses port 443 for encrypted traffic.
Configuring FCS for SSL
To use the native SSL support in FCS for secure communications you must modify the FCS
Adaptor.xml and Server.xml configuration files for by defining the SSL tags in these files.
Adaptor.xml and Server.xml configuration files for by defining the SSL tags in these files.
The default location of the FCS files is c:\breeze\serv. The configuration files for FCS are found in
c:\breeze\serv\win32\conf.
c:\breeze\serv\win32\conf.
Adding the required SSL tags in the Adaptor.xml file
The SSL tags are included in the Server.xml file. Not all of the required SSL tags in Adaptor.xml
are present by default, however. You will need to insert the following SSL-specific tags in the
Adaptor.xml file.
are present by default, however. You will need to insert the following SSL-specific tags in the
Adaptor.xml file.
<SSL>
<SSLServerCtx>
<SSLCertificateFile></SSLCertificateFile>
<SSLCertificateKeyFile type="PEM"></SSLCertificateKeyFile>
<SSLPassPhrase></SSLPassPhrase>
<SSLCipherSuite></SSLCipherSuite>
<SSLSessionTimeout>5</SSLSessionTimeout>
</SSLServerCtx>
</SSL>
<SSLServerCtx>
<SSLCertificateFile></SSLCertificateFile>
<SSLCertificateKeyFile type="PEM"></SSLCertificateKeyFile>
<SSLPassPhrase></SSLPassPhrase>
<SSLCipherSuite></SSLCipherSuite>
<SSLSessionTimeout>5</SSLSessionTimeout>
</SSLServerCtx>
</SSL>
Place this section right after the end tag <
/HTTPTunneling>
for the HTTPTunneling section but
before the root end tag <
/Adaptor>
.
Note: HTTP Tunneling is enabled by default.