Secure Sockets Layer (SSL) is a protocol that provides security and privacy over the Internet by negotiating encryption keys before transmitting data between a client and a server. The SSL page allows you to enable or disable SSL on the Q-Cloud Protect appliance. You can also install a new SSL certificate to replace the Quantum default SSL certificate.
Server Authentication Warnings
Enabling SSL with the default Quantum certificate allows you to securely communicate with the Q-Cloud Protect Web-based interface using SSL encryption. However, you may receive a warning from your Web browser and network security scanners stating that the server you are attempting to connect to does not match the server embedded within the certificate.
This warning is expected behavior because the default certificate can only be used for encryption and not server authentication. We recommend the you replace the default Quantum certificate with your own official certificate specific to your cloud appliance. By installing your own custom certificate, you can take advantage of server authentication in addition to encrypted communication.
Suppress server authentication warnings for the default certificate as follows:
If a dialog box displays warning you of a possible certificate error:
- From the Tools > Internet Options > Security > Trusted Sites menu, add the IP address of the cloud appliance to the Trusted Sites list.
- If subsequent warning pages display along with an option to close your Web browser or continue to the Web site, click Continue to suppress the warnings until you restart your Web browser.
If the Secure Connection Failed dialog box displays, click the link at the bottom of the dialog box and follow the instructions to add an exception for your cloud appliance.
To establish a secure connection, the cloud appliance must have an encryption key assigned to it by a Certification Authority in the form of a certificate file, private key file, and pass phrase. After you install these components, you can establish a secure connection using the SSL protocol.
On the the Secure Socket Layer (SSL) page, click New under the Certificate section to display the Install New Certificate page .
In the Certificate File box, click Browse to browse the system and locate the SSL certificate file.
The SSL certificate file must be named server.crt.
- Click Upload.
- Type your SSL private key and press <Enter>.
Type your SSL passphrase and press <Enter>.
A Successful Upload page displays stating that the SSL certificate file has been installed on the system.
The certificate displays in the Certificate section.