Acronis Backup & Recovery 10 Adv WS TIDLBPDES Manuale Utente

Codici prodotto

TIDLBPDES

http://msdn2.microsoft.com/en-us/library/aa374177.aspx

2.11.8.6. SSL certificates

Acronis Backup & Recovery 10 components use Secure Sockets Layer (SSL) certificates for secure
authentication.

SSL certificates for the components can be one of the two types:

•

Self-signed certificates, such as certificates automatically generated during the installation of an
Acronis component.

•

Non-self-signed certificates, such as certificates issued by a third-party Certificate Authority
(CA)—for example, by a public CA such as VeriSign

or Thawte™—or by your organization's CA.

Certificate path

All Acronis components installed on a machine, when acting as a server application, use an SSL
certificate called the server certificate.

In Windows, the certificate path and the server certificate's file name are specified in the registry key
HKEY_LOCAL_MACHINE\SOFTWARE\Acronis\Encryption\Server

. The default path is

%SystemDrive%\Program Files\Common Files\Acronis\Agent.

To ensure reliability, the certificate is stored in Windows Certificate Store at the following location:
Certificates (Local Computer)\Acronis Trusted Certificates Cache.

For self-signed certificates, the certificate thumbprint (also known as fingerprint or hash) is used for
future host identification: if a client has previously connected to a server by using a self-signed
certificate and tries to establish connection again, the server checks whether the certificate's
thumbprint is the same as the one used before.

In case the list of certificates for the local machine is not displayed in the Certificates console, you can
use the following procedure.