Network Deployment (Distributed operating systems), v8.0 > Reference > Sets
Manage endpoint security configurations
Overview
From the admin console...
Security | SSL certificates and key management | Configuration settings | Manage endpoint security configurations
Local topology
The Local topology represents the hierarchy of...
- nodes
- node groups
- clusters
- servers
- end points
...within the cell that comprise a centralized SSL configuration.
The topology acts as a hierarchical tree in terms of inheritance. For example, if an SSL configuration has been associated with a specific node, then all servers within that node will inherit that SSL configuration selection, provided the servers are not associated with an SSL configuration at the server scope. Centralized management of SSL is the default configuration; however, it can be overridden at various locations to directly select a specific SSL alias as in previous releases for backwards compatibility.
Create an SSL configuration
Scope Description Inbound Server endpoints that receive connections at the various servers within the cell. Outbound Client side of connections from the various servers within the cell. Nodes Nodes that are part of the cell. The list of nodes is updated anytime a node gets federated into the cell. Servers Servers that are part of a specific node. We can enable a specific server to have an SSL configuration associated with it so that resources within the same server can use the associated SSL configuration. Clusters Clusters that are part of the cell. When an SSL configuration is associated with a cluster, all servers within the cluster will use the same SSL configuration unless specified at a lower level in the topology. Nodegroups Node groups that are part of the cell. When an SSL configuration is associated with a node group, all nodes within that node group may use the same SSL configuration unless one is specified at a lower scope in the topology or the specific end point has chosen a direct alias reference. Secure port and transport Specifies an endpoint name to associate with an SSL configuration when more specific SSL settings are needed at this level. You could select an alias directly at the endpoint panel; however, when you use Secure port and transport, you can maintain more centralized control of the SSL configuration and make changes more easily.
Related
SSL certificate and key management
Manage certificate expiration settings
Notifications