Filter
Top Products
IP Office ContactStore 7.8 Page 81
15-601038 Issue 4b (06 July 2009)IP Office
Appendix: Advanced Security
C:\Program Files\ComPlus Applications\{A639A196-338F-48E0-B76B-E223C00B5617}
Configure Viewer to use https
1.Navigate to the EyrBSConfigurationViewer application and right-click in explorer, select run as…
2.The Run As dialog appears, select The following user option and specify the account which Viewer is running
under.
3.The Configuration Viewer application is launched.
4.Navigate to Central Configuration > Systems >Main Eyretel System > General
5.In the right-hand pane right-click the SSLOnly value and select Modify
6.Change the value from False to True.
7.Select OK.
8.Still using the Configuration Viewer, navigate to Central Configuration > Systems > CapturePlatformName >
General, where CapturePlatformName is the capture platform name of the cscm recorder as configured in Viewer.
9.In the right-hand pane right-click and select New > Value a new value is created, set the name to SSLHostPort.
10.Now right-click the new value and select Modify
11.Set the value to the https port in use by the cscm recorder, the recorders default https port is 8443.
12.Select OK.
13.Now close the Configuration Viewer.
14.Now you should launch Component Services and navigate to Com+ Applications, select Application Portal,
right-click and select shutdown.
15.Viewer should now use https when communicating with the cscm recorder.
Configure Archive to use https
By default Archive will not use https to connect to the cscm recorder, this is done by editing a file located on the Archive
server.
Configure Archive to use https
1.Open the following file in a text editor C:\Program Files\Verint Systems\conf\SecurityConfig.xml
2.Locate the following xml element in the file <SSLOnly>false</SSLOnly>
3.Change the word false to true and save the file.
4.Now use the Archive Management UI to stop and start the archive service.
5.Archive will now use https to contact to the cscm recorder.
As a result of changing this file the archive system will raise two Major alarms indicating that the security configuration
file has been tampered and that there is an SSL Configuration Error, both of these can be ignored – examples of these
are as follows.
File Tampered, 04/24/2008 8:44 AM, On Archive781, file "C:\Program Files\Verint Systems\conf\securityconfig.xml" may
have been tampered with. Please refer to the System Administration Guide for details on how to correct a tampered file.
SSL Configuration Error, 04/24/2008 8:46 AM, SSL is configured for Content Server on host ARCHIVE781, but a required
file is missing. The file is C:\Program Files\Verint Systems\conf\security\cert.pem. Please deploy the file or remove
SSLConfiguration by modifying RecorderGeneral.xml ssllistenport.
· Note: Archive will use the capture platforms https port as configured using the Viewer Configuration tool as
described in the previous section, the error message above is related to a core recorder content server
configuration which is not part of the cscm recorder deployment and hence can be ignored. The certificates
referred to in the alarm are not necessary for cscm as the public certificates are available via the windows
certificate store as described earlier.