Link Search 菜单 Expand Document

SSL for SaaS Tab

配置>覆盖和安全性> SSL > SSL for SaaS

This report lists the signed substitute certificates for the appliances.

IMG

为了完全压缩SAAS服务的SSL流量,该设备必须解密它,然后重新加密它。

为此,设备生成了替代证书,然后必须由证书授权(CA)签署。有两个可能的签名者:

For a内置CA证书,签名当局是银峰。

  • 该设备在本地生成,每个证书都是唯一的。这是概念证明(POC)的理想选择,当合规性不是一个大问题时。

  • 为避免浏览器警告,请从客户端设备中将证书导入到浏览器中。

For aCustom CA Certificate,签署当局是企业CA。

  • If you already have a subordinate CA certificate (for example, an SSL proxy), you can upload it to Orchestrator and push it out to the appliances. If you need a copy of it later, just download it from here.

  • If this substitute certificate is subordinate to a root CA certificate, also install the higher-levelSSL CA证书(进入SSL CA证书template) so that the browser can validate up the chain to the root CA.

  • If you不要已经有下属CA证书,您可以访问任何设备Configuration > Templates & Policies > Applications & SaaS > SaaS Optimizationpage and generate a Certificate Signing Request (CSR).

小费:有关EdgeConnect和Orchestrator安全算法的历史矩阵,请单击这里.

Back to top

© Copyright 2022 Hewlett Packard Enterprise Development LP. The information contained herein is subject to change without notice. The only warranties for Hewlett Packard Enterprise products and services are set forth in the express warranty statements accompanying such products and services. Nothing herein should be construed as constituting an additional warranty. Hewlett Packard Enterprise shall not be liable for technical or editorial errors or omissions contained herein. Aruba Networks and the Aruba logo are registered trademarks of Aruba Networks, Inc. Third-party trademarks mentioned are the property of their respective owners. To view the end-user software agreement, go toAruba EULA.

Baidu