Cisco Cisco E-Mail Manager Unity Integration Option Guida All'Installazione
10-4
WebView Installation and Administration Guide for Cisco Enterprise & Hosted Editions, Release 7.0(0)
Chapter 10 WebView Security: Active Directory and Secure Socket Layer
About SSL
About SSL
Secure Socket Layer (SSL) is a protocol that allows secure communication between a web browser and
the web server.
the web server.
The 7.0(0) release of WebView supports 128-bit encryption for SSL 3.0 when the WebView server is
installed in a Windows 2003 Server environment with Microsoft Internet Information Services (IIS)
version 6.0.
installed in a Windows 2003 Server environment with Microsoft Internet Information Services (IIS)
version 6.0.
For upgrade customers who have Windows 2000 Server and IIS 5.0, the SSL option is greyed out in ICM
Setup, and when it is installed, it will be disabled.
Setup, and when it is installed, it will be disabled.
SSL Configuration at ICM Setup
The WebView Node Properties screen in ICM Setup includes a group box to configure SSL 3.0
Encryption for WebView.
Encryption for WebView.
This group box has the following controls:
•
a checkbox for Enable Encryption (128-bit), which is selected by default.
•
a checkbox to encrypt the Session
The administrator can change the default configuration from ICM Setup and also has the option to
change the configuration at any time by invoking the SSL Encryption Utility. See
change the configuration at any time by invoking the SSL Encryption Utility. See
for information on how to use the utility.
Accepting the defaults:
•
generates a self-signed certificate (using OpenSLL), imports that certificate to the local Machine
Store, and installs it on the IIS Web Server.
Store, and installs it on the IIS Web Server.
A self-signed certificate is a certificate that has not been signed by an external authority. It ensures
that an encrypted Web connection is in place.
that an encrypted Web connection is in place.
•
ensures that the Authentication information entered for WebView log in (user name and password)
is encrypted
is encrypted
If the administrator installs multiple WebView servers, each is set up with its own certificate, and SSL
can be configured independently for each.
can be configured independently for each.
If another certificate is already installed, ICM Setup does not replace it or overwrite the existing
certificate.
certificate.
The administrator can subsequently obtain and install a certificate that is signed by a corporate
Certificate Authority or by a trusted third-party CA such as Verisign. Administrators who choose to do
this can simply follow the procedure presented by that CA or refer to the instructions in the Microsoft
Knowledge Base to configure IIS directly.
Certificate Authority or by a trusted third-party CA such as Verisign. Administrators who choose to do
this can simply follow the procedure presented by that CA or refer to the instructions in the Microsoft
Knowledge Base to configure IIS directly.
Changes at User Log In
This section explains two minor changes that reporting users experience when SSL is enabled.
URL
If SSL is enabled for Authentication. the reporting user enters a WebView URL that begins with
http
.
If SSL is enabled for the full Session, the URL for each page begins with
https
.