TLS Encryption on 19.1

[Tim Zwieg]

I have a customer that is requiring the messages I send to them to be  tls encrypted messages.  I am running Cloverleaf 19.1.  I am trying to figure out how to configure this using the SSL configuration tab.  I am not finding any documentation to help walk me through this.  Has anyone set this up before?

Topic

[Robert Kersemakers]

First off: you need the Secure Messenger (SSL/SFTP/FTPS) add-on to make this work. If you don’t have this, you need to acquire it from Infor.
I played around with this and got it to work; I wanted to secure communication between our 19.1 Cloverleaf and the 6.2 DMZ Cloverleaf.

When configuring SSL you first define how secure you want the connection to be by ‘Mode’:

• ClientAnon for encryption without certificates
• Client for encryption with a Self Signed certificate
• ClientAuth for encryption with a CA certificate.

With ‘SSL Protocol’ you can choose a certain TLS version. Or leave ‘All’ and let the systems decide.
I didn’t touch the ‘SSL Cipher Suites’. In 19.1 you can choose from a list, but in 6.2 you can’t. Just let the systems decide for themselves.
Depending on the Mode you then need to configure the location of the certificates and the password.

Restart the thread and it should work. Check the logging: ‘SSL Handshake error’ indicates something is wrong in the configuration.

Hope this helps.

 

 

Attachments:

You must be logged in to view attached files.

Zuyderland Medisch Centrum; Heerlen/Sittard; The Netherlands

[Author]

Replies