This section describes how to configure the Web server redirector plug-in to use TLS and FIPS for each supported Web server. Table 4-6 lists the redirector plug-ins which support FIPS and TLS.
Plug-in |
FIPS supported? |
|---|---|
Apache 2.x |
Yes |
Apache 1.x |
No |
iPlanet 6.0 |
Yes |
iPlanet 4.0 |
Yes |
IIS 5.0 |
Yes |
Netscape 3.6.x |
Yes |
Netscape 6.1 |
Yes |
Adding support for FIPS and TLS in your Web server redirector plug-ins requires you to:
Run the Full installation for new EAServer installation. This will include the Web server plug-in and the FIPS-related files.
Run the EAServer 5.5 upgrade installation program if you are upgrading EAServer. Refer to “Adding, reinstalling, or upgrading components” for more details.
Copy libraries from the EAServer 5.5 installation to the appropriate Web server directory. This assumes you are copying the files from the same machine.
Make changes to the corresponding configuration files.
Use the newly installed standalone Security Manager to enable FIPS for the redirector.
Select a FIPS-compatible cipher suite when setting the Connector.Https.qop directive in the redirector configuration file.
Restart the Web server for the changes to take effect.
