Configuring M-Business Server to accept only secure connections

You can configure M-Business Server to accept only secure (https://) connections. If a user attempts to synchronize using an insecure connection, he or she receives a message on the device and cannot synchronize until attempting to do so securely.

To configure M-Business Server to accept only secure connections

  1. Use a text editor to open <M-Business_Home>/conf/sync.conf.default.

  2. Locate the SSL:SyncPref AllowSecureClientConnect setting, then change its value to TRUE.

    Make sure the line is uncommented.

  3. Locate the ConnectSecureOnly setting, then change its value to TRUE.

    Make sure the line is uncommented.

  4. Save and close the file.

  5. Use a text editor to open <M-Business_Home>/conf/server.xml.default.

  6. Locate the AllowSecureClientConnect setting, and set its value to TRUE.

    Make sure the line is uncommented.

  7. Locate the ConnectSecureOnly setting, and set its value to TRUE.

    Make sure the line is uncommented.

  8. Save and close the file.

  9. Run the defaults_setup script located in the <M-Business_Home>/conf directory.

    Windows: defaults_setup.bat

    UNIX: defaults_setup

  10. Stop and restart M-Business Server.

Set both directives to FALSE to configure M-Business Server to accept only insecure connections. The following table includes an additional explanation of expected behavior from setting the AllowSecureClientConnect and ConnectSecureOnly directives.

Table 1. Setting security directives

Action

Behavior

Additional comments

Both AllowSecureClientConnect and ConnectSecureOnly set to TRUE

Users can synchronize securely. M-Business Server accepts only secure connections.

If a user attempts to synchronize insecurely an explanatory dialog appears. With M-Business Client, after the synchronization, the device is automatically reconfigured to synchronize securely and the security preference is locked down on M-Business Client’s desktop and device. Also, a message appears in the synchronization error log on the server.

Both AllowSecureClientConnect and ConnectSecureOnly set to FALSE

Users cannot synchronize securely. M-Business Server accepts only non-secure connections.

A user cannot synchronize securely. An explanatory dialog appears. With M-Business Client, after the synchronization, the device is automatically reconfigured to synchronize non-securely and the security preference is locked down on M-Business Client’s desktop and device.

AllowSecureClientConnect set to TRUE and ConnectSecureOnly set to FALSE

Users can synchronize securely. M-Business Server accepts either secure or non-secure connections.

Users can change their security preferences at will.

Copyright © 2008, iAnywhere Solutions, Inc.