SSL (JANUS DEFINE parameter): Difference between revisions
m (1 revision) |
mNo edit summary |
||
Line 1: | Line 1: | ||
{{DISPLAYTITLE:SSL}} | {{DISPLAYTITLE:SSL}} | ||
<span class="pageSubtitle"><section begin="desc" /><section end="desc" /></span> | <span class="pageSubtitle"><section begin="desc" />Sets encryption on.<section end="desc" /></span> | ||
SSL is a parameter on [[JANUS DEFINE]], which defines and sets characteristics of a Janus port. See the [[JANUS DEFINE#parmlist|List of JANUS DEFINE parameters]]. | SSL is a parameter on [[JANUS DEFINE]], which defines and sets characteristics of a Janus port. See the [[JANUS DEFINE#parmlist|List of JANUS DEFINE parameters]]. | ||
The SSL parameter indicates that communications on this port should be encrypted using ''[[Janus Network Security]]'' SSL (Secure Sockets Layer) or TLS (Transport Layer Security) support. The parameter has the following mutually exclusive options: | |||
<table class="syntaxTable"> | <table class="syntaxTable"> | ||
<tr><th>SSL procfile procname</th> | <tr><th>SSL procfile procname</th> | ||
<td>Identifies the file (typically JANSSL) and procedure that contain the certificate to be presented to clients on server ports and to the server on CLSOCK ports.</td></tr> | <td>Identifies the file (typically JANSSL) and procedure that contain the certificate to be presented to clients on server ports and to the server on CLSOCK ports.</td></tr> | ||
<tr><th>SSL *</th> | <tr><th>SSL *</th> | ||
<td>Presents to the client or server the "self-signed certificate" provided for your site by Sirius Software.</td></tr> | <td>Presents to the client or server the "self-signed certificate" provided for your site by Sirius Software.</td></tr> | ||
<tr><th>SSL 0</th> | <tr><th>SSL 0</th> | ||
<td>Indicates for CLSOCK ports that, although the connection is encrypted, the client is not to provide a certificate to the server if requested. Server certificates are required to establish an encrypted connection, but client certificates are optional and are not used at all by many secured servers. | <td>Indicates for CLSOCK ports that, although the connection is encrypted, the client is not to provide a certificate to the server if requested. Server certificates are required to establish an encrypted connection, but client certificates are optional and are not used at all by many secured servers. | ||
</td></tr></table> | </td></tr> | ||
</table> | |||
Certificates and authentication are described further in the ''Janus Network Security Reference Manual''. | Certificates and authentication are described further in the ''Janus Network Security Reference Manual''. | ||
Other optional DEFINE command parameters used in conjunction with the SSL parameter include: | Other optional DEFINE command parameters used in conjunction with the SSL parameter include: | ||
<ul> | <ul> | ||
<li>For server sockets: .br SSLBSIZE, SSLCIPH, SSLCLCERT/SSLCLCERTR, .br SSLIBSIZE, SSLOBSIZE, SSLPROT, SSLSES | <li>For server sockets: .br SSLBSIZE, SSLCIPH, SSLCLCERT/SSLCLCERTR, .br SSLIBSIZE, SSLOBSIZE, SSLPROT, SSLSES | ||
<li>For client sockets: .br SSLOPT | <li>For client sockets: .br SSLOPT | ||
Line 29: | Line 28: | ||
</ul> | </ul> | ||
Other JANUS commands useful for SSL ports and described in the ''Janus TCP/IP Base Reference Manual'' include: | |||
<ul> | <ul> | ||
<li>For ports that authenticate incoming certificates: .br ADDCA, DELCA, DISPLAYCA, STATCA | <li>For ports that authenticate incoming certificates: .br ADDCA, DELCA, DISPLAYCA, STATCA | ||
<li>For monitoring a port's SSL activity: .br SSLSTAT | <li>For monitoring a port's SSL activity: .br SSLSTAT | ||
</ul> | </ul> | ||
''[[Janus Web Server]]'' $functions useful for SSL applications and described in the ''Janus Web Server Reference Manual'' include:<ul> | |||
<li>$ | ''[[Janus Web Server]]'' $functions useful for SSL applications and described in the ''Janus Web Server Reference Manual'' include: | ||
<ul> | |||
<li>[[$Web_Cert_Info]], [[$Web_Cert_Levels]], [[$Web_Cipher]], [[$Web_Protocol]], [[$Web_Secure]] | |||
</ul> | |||
The SSL parameter is valid for SRVSOCK, CLSOCK, &P$SVSYB port types. | The SSL parameter is valid for SRVSOCK, CLSOCK, &P$SVSYB port types. |
Revision as of 15:23, 14 March 2011
<section begin="desc" />Sets encryption on.<section end="desc" />
SSL is a parameter on JANUS DEFINE, which defines and sets characteristics of a Janus port. See the List of JANUS DEFINE parameters.
The SSL parameter indicates that communications on this port should be encrypted using Janus Network Security SSL (Secure Sockets Layer) or TLS (Transport Layer Security) support. The parameter has the following mutually exclusive options:
SSL procfile procname | Identifies the file (typically JANSSL) and procedure that contain the certificate to be presented to clients on server ports and to the server on CLSOCK ports. |
---|---|
SSL * | Presents to the client or server the "self-signed certificate" provided for your site by Sirius Software. |
SSL 0 | Indicates for CLSOCK ports that, although the connection is encrypted, the client is not to provide a certificate to the server if requested. Server certificates are required to establish an encrypted connection, but client certificates are optional and are not used at all by many secured servers. |
Certificates and authentication are described further in the Janus Network Security Reference Manual.
Other optional DEFINE command parameters used in conjunction with the SSL parameter include:
- For server sockets: .br SSLBSIZE, SSLCIPH, SSLCLCERT/SSLCLCERTR, .br SSLIBSIZE, SSLOBSIZE, SSLPROT, SSLSES
- For client sockets: .br SSLOPT
- For both types of sockets: .br SSLCACHE, SSLMAXAGE, SSLMAXCERTL, SSLUNENC
Other JANUS commands useful for SSL ports and described in the Janus TCP/IP Base Reference Manual include:
- For ports that authenticate incoming certificates: .br ADDCA, DELCA, DISPLAYCA, STATCA
- For monitoring a port's SSL activity: .br SSLSTAT
Janus Web Server $functions useful for SSL applications and described in the Janus Web Server Reference Manual include:
The SSL parameter is valid for SRVSOCK, CLSOCK, &P$SVSYB port types.
References
See: List of Janus commands | List of JANUS DEFINE parameters.