® Sametime server installs on a Domino
® server and relies on the Domino
HTTP server to handle all HTTP traffic to the Sametime server. To encrypt web browser access to the Sametime
® Meeting Center with SSL, the administrator must configure the Domino
HTTP server to support SSL.
About this task
When setting up a Domino
HTTP server to support SSL, the administrator can force all connections to the Domino
server to use SSL. The administrator forces all HTTP connections to use SSL by performing either of the following configurations in the Ports-Internet Ports-Web section of the Domino
Server document during the Domino
HTTP server SSL set up procedure:
- Setting the Web HTTP "TCP IP port status" setting to "Disabled" and setting the Web HTTP "SSL port status" to "Enabled."
- Setting the Web HTTP "TCP IP port status" to "Redirect to SSL."
If you force all HTTP connections to use SSL, you must also configure the Sametime server to support SSL for HTTP connections to its servlets. If you do not configure the Sametime server to support SSL for connections to its servlets, users will be unable to access the Sametime server.
To ensure access to the Sametime servlets when Domino
requires SSL for all connections, complete the following steps:
- Set up the Domino server to support SSL
- Import the SSL trusted room or SSL server certificate into the key store database on the Sametime server
- Modify the Sametime configuration for SSL
You can use these procedures regardless of whether your Sametime server operates on the Windows
®, Solaris, Linux
® or IBM
i operating system.
It is possible to configure a Domino
server to allow unencrypted HTTP connections on port 80 and simultaneously allow SSL-encrypted HTTP (or HTTPS) connections on port 443. This configuration enables you to encrypt connections to databases containing sensitive data while allowing unencrypted connections to databases that do not contain sensitive data. Since the Domino
server on which Sametime is installed is dedicated to supporting only Sametime, it is unlikely that such a configuration would be implemented on a Domino/Sametime server.
Parent topic: Getting started with Sametime security