Connect using Pass Through Mode

Use this procedure to create Reflection emulation sessions that connect to a Reflection Security Proxy that is configured as a Pass Through proxy.

In Pass Through mode, the Security Proxy doesn't perform any SSL handshake, client/server authentication or encryption. If SSL is used in this mode, the SSL session is created between the client and destination host and encrypted data simply passes through the Security Proxy.

For instructions on configuring the Reflection Security Proxy, see the documentation included with Reflection Security Gateway.

To configure a session

  1. In a web browser, start Reflection Security Gateway by setting the URL to:

    where server and port are replaced with the Reflection Management server address.

  2. Click Administrative WebStation and log on as administrator.
  3. From the left pane, click Session Manager.
  4. Click Add to open the Add New Session page.
  5. Under Windows-Based, select Reflection Workspace, and click Continue.
  6. Specify a trusted location on the user's workstation where settings files will be stored, and then click Launch.

    Reflection opens the new session document on your workstation in Administrative WebStation mode.

  7. Configure the session document as follows:
    1. In the Create New Terminal Document dialog box, enter the IP Address or Host name and port, select the check box Configure additional settings, and click OK.
    2. In the Settings dialog box, under Host Connection, click Set Up Connection Security.
    3. In the Configure Advanced Connection Settings dialog box, click Security Settings....
    4. In the Security Properties dialog box, on the SSL/TLS tab, select Use SSL/TLS security, select the check box Use Reflection security proxy and enter the proxy name and port.
  8. After the session successfully connects, save the session.

    The session file is then saved to the Reflection Management Server.

  9. Next, you make the session available to specific users.

    Note: If you want to establish an SSL-secured connection between Reflection and the destination host using the Security Proxy in Pass Through mode, you may need to deselect Host name must match certificate or, preferably, add the Security Proxy as the Subject Alternate name in the host server certificate.