Search:     Advanced search
Browse by category:
 Glossary | Ask question
Knowledgebase / SPX/AG / SSL - Secure Sockets Layer / PKI server (CA or RA) is used for authentication. Can Array SP bypass login and talk to the PKI server for the authentication?


PKI server (CA or RA) is used for authentication. Can Array SP bypass login and talk to the PKI server for the authentication?
Print
Email to friend
Add comment
Views: 364
Votes: 0
Comments: 0
The Array SP can do both login/password as well as PKI. It is possible to simply use client side certificates and disable the login/password process thus providing security exclusively through SSL certificates. My personal preference, however, is to suggest using a combination of both.
 
The Array SP does not directly interface with PKI systems through protocols such as OCSP; however the Array SP can be configured to periodically pull in a CRL via HTTP.


Other questions in this category
Do we support the Extended Validation SSL certificate or cipher suites?
How does SSL port forwarding feature work?
When Web or FTP (that is set by "ssl setting crl" for CRLDP) is down, will client authentication of Array SPX still work by CRLDP that the Array SPX has downloaded?
What does the "Resumed SSL Session" mean?
What value in ArrayOS is equivalent to "SSLSessionCacheTimeout" from Apache mod_ssl?
What "Compression Method" does ArrayOS SSL handshake accept?
What vendor should be used to acquire a certificate from Verisign or any CA?
What version of SSL does ArrayOS support?
Does the ArrayOS support end to end SSL using fwd tcps?


Array Networks, Inc.