Security services for Management & Control Services (MCS) provides MCS with a secure port that implements Secure Sockets Layer (SSL) 3.0 security and Transport Layer Security (TLS) 1.0 support. Using security services, MCS can support both secured and unsecured connections, depending on the encryption settings you specify.
SSL can provide secured connections between MCS and client computers. These connections are used when users access the MCS console with an HTTPS connection to display the MCS console.
Security services provides the following features:
For information about available authentication types, see Authenticating MCS Users.
At connect time, MCS negotiates SSL or TLS with the browser. Alternatively, you can set security services to force TLS, which will work with browsers configured for TLS.
|To establish a TLS connection, the TLS 1.0 option must be enabled in the Web browser on the client computer.|
When client computers are configured for an SSL connection via security services, secure Telnet traffic is transported using the browser's SSL, thereby limiting client configurations to a single HTTPS port, and minimizing the impact on both the client-side and server-side firewall security policies.
In addition, security services includes a destination filter to restrict client access to only authorized host addresses and ports.
|Setting Up Centralized Management, Overview|
|Authenticating MCS Users|
|Configuring Security Services|
|SSL Certificates, Overview|