Configure TLS server identity
TLS server identity determines how SMC servers or Secure SD-WAN Engines verify the identity of the external servers with which they communicate.
You can configure TLS server identity in the following elements:
- Management Servers and Log Servers — Defines how the identity of the syslog server to which log data is forwarded from the Management Server or the Log Server is verified.
- Active Directory Server or LDAP Server — Defines how the identity of the Active Directory Server or LDAP Server is verified when the LDAPS or Start TLS protocols is used to secure the LDAP connection between the external server and the Management Server and Secure SD-WAN Engines.
- Forcepoint User ID Service — Defines how the identity of the Forcepoint User ID Service that sends user identification information to the Secure SD-WAN Engines is verified.
For more details about the product and how to configure features, click Help or press F1.
Steps
TLS Server Identity dialog box
Use this dialog box to define the identity of a TLS server for TLS-protected audit or log data forwarding to an external syslog server, or the identity of an external LDAP or Active Directory server.
Option | Definition |
---|---|
TLS Server Identity Field |
Select the server identity type field to be used.
|
Fetch From Certificate | Opens the Import Certificate dialog box for fetching the value of the server identity field from a
certificate. Note: You can fetch the value of the server identity field from a certificate only if the server identity
field is Distinguished Name, SHA-1, SHA-256,
SHA-512, or MD5.
|
Server Identity Value | Specifies the value for the selected field type. |