This section gives an overview of how to install SGD in a secure manner.
By default, SGD is installed to use secure connections between client devices and the SGD server, and to use secure connections between the SGD servers in the array.
Connections between the client device and the SGD server are secured during installation as follows:
AIP connections are secured by installing an SSL certificate on the SGD server and enabling SGD security services.
HTTP connections are secured by enabling HTTPS connections on the SGD web server. The SGD web server is preconfigured to use the same SSL certificate as the SGD server.
Users are able to install and use their own security certificates for securing connections to SGD.
Connections between the SGD servers in the array are secured using an SSL certificate that has been signed by the primary SGD server in the array. The primary server acts as the trusted certificate authority (CA).
The following table includes some security topics for installing SGD.
Table 2.1. SGD Installation Topics
Topic | More Information |
---|---|
Installing SGD. The SGD software is supplied as a package file. When you install SGD, connections to the SGD server and between the SGD servers in the array are secured using SSL. | |
Installing the SGD Gateway. The Gateway is a secure proxy server for SGD. | |
Installing the SGD Client manually. The SGD Client is usually installed automatically when a user connects to an SGD server using a browser. With manual installation, you have full control over where the SGD Client is installed. | |
Removing SGD. To remove SGD, you remove the components installed on hosts, on application servers, and on client devices. |