SSL/TLS Support Worksheet

Before you add SSL/TLS support to the connection information you created in the Basic FTP Configuration scenario, gather the information on the SSL/TLS Support Worksheet. You use this information as you configure the inbound and outbound nodes for SSL/TLS support.

Select the security setting and cipher suites to be used to secure the connection. To configure client authentication, enable this option. Select the key/system certificate to use to validate the connection.

Configuration Manager Field

Feature

Value

Inbound Node Name

Name of inbound node to add security to.

Select an inbound node definition from the list.

Security Setting

Security protocol to use.
  • SSLv3
  • SSLv3 with v2 Hello
  • SSLv3 or TLSv1
  • SSLv3, TLSv1, 1.1, or 1.2
  • TLSv1
  • TLSv1.1
  • TLSv1.2

Enable Client Authentication

Do you want to require that the inbound connection present its certificate for SSL or TLS client authentication?

(Yes or No)

Trust Store

If client authentication is enabled, identify the trust store used to verify the client certificate.

  

CA Certificates/Trusted Root

Name of CA certificate/trusted root (if client authentication is enabled).

  

Key Store

The location where the keys and system certificates you want to use are stored.

  

Key/System Certificate

Name of Sterling Secure Proxy system certificate presented to the inbound connection during the handshake.

  

Available Cipher Suites

Selected Cipher Suites

Select the ciphers to enable by moving them from the Available Ciphers to the Selected Ciphers field.

  

Select the security setting and cipher suites to be used to secure the outbound connection. Select the key/system certificate to use to validate the connection.

Configuration Manager Field

Feature

Value

Outbound Node Name

Name of outbound node to add security to.

Select a node definition from the list

Security Setting

Security protocol to use.
  • SSLv3
  • SSLv3 with v2 Hello
  • SSLv3 or TLSv1
  • SSLv3, TLSv1, 1.1, or 1.2
  • TLSv1
  • TLSv1.1
  • TLSv1.2

Trust Store

If client authentication is enabled, identify the trust store where the certificate is stored.

  

CA Certificates/Trusted Root

Identify the certificate to use to secure the outbound connection.

  

Key Store

The location where the keys and system certificates you want to use are stored.

  

Key/System Certificate

Key/System Certificate

  

Available Cipher Suites

Selected Cipher Suites

Cipher suites to enable.

  
Parent topic: Add SSL/TLS Support for an FTP Connection