Web Access Server Properties dialog box
Use this dialog box to define Web Access Server properties.
| Option | Definition |
|---|---|
| General tab | |
| Name | The name of the element. |
| Installation ID | Shows the unique installation identifier (UIID) for the SMC. |
| IPv4 Address | Specifies the IPv4 address or FQDN of the server. The server can have both an IPv4 and an IPv6 address. |
| IPv6 Address | Specifies the IPv6 address of the server. The server can have both an IPv4 and an IPv6 address. |
| Resolve | Automatically resolves the IP address of the server. |
|
Location
(Optional) |
Specifies the location to which the server belongs if there is a NAT device between the server and other SMC components. |
| Log Server | Specifies the Log Server to which the server sends its logs. |
| Category (Optional) |
Includes the element in predefined categories. Click Select to select a category. |
| Tools Profile | Adds commands to the right-click menu for the element. Click Select to select an element. |
| Comment (Optional) |
A comment for your own reference. |
| Option | Definition |
|---|---|
| Web Access tab | |
| Enable | Enables the feature. |
|
Host Name
(Optional) |
Enter the host name that the service uses. Leave the field blank to allow requests to any of the server’s host names. |
| Port Number |
Enter the TCP port number that the service listens to. By default, port 8085 is used when Web Access is enabled on the Management Server and port 8083 when enabled on the Web Access Server. Note: Make sure that the listening port is not in use on the server.
|
|
Listen Only on Address
(Optional) |
If the server has several addresses and you want to restrict access to one address, specify the IP address to use. |
| Session Timeout | Enter the timeout in seconds after which the session expires. While the session is still active, the administrator does not need to log on again if they close the web browser. |
| Server Credentials | Select the TLS Credentials element that is used for HTTPS connections. Click Select to select an element. |
| Server TLS Cryptography Suite Set | Select the TLS Cryptography Suite Set element that defines the allowed algorithms for HTTPS connections. Click Select to select an element. |
|
Generate Server Logs
(Optional) |
Select if you want to log all file load events for further analysis with external web statistics software. |
|
Use SSL for session ID
(Optional) |
Track sessions in your web application. Do not select this option if your network requires you to use cookies or URIs for session tracking. |
| Client Certificate Authentication | When selected, administrators can be authenticated using client certificates via SMC Web Access. Note:
|
| Option | Definition |
|---|---|
| NAT tab (All optional settings) |
|
| Engine | Shows the selected engine. |
| NAT Type | Shows the NAT translation type: Static or Dynamic. |
| Private IP Address | Shows the Private IP Address. |
| Public IP Address | Shows the defined Public IP Address. |
| Port Filter | Shows the selected Port Filters. |
| Comment | An optional comment for your own reference. |
| Add NAT Definition | Opens the NAT Definition Properties dialog box. |
| Edit NAT Definition | Opens the NAT Definition Properties dialog box for the selected definition. |
| Remove NAT Definition | Removes the selected NAT definition from the list. |
| Option | Definition |
|---|---|
| Certificate tab (All optional settings)
Note: This tab is only displayed if the Use External Certificate
Authority feature is enabled during the SMC installation
|
|
| Current Certificate | Shows information about the current certificate of the server. Click Export Certificate to export the current certificate. Click Renew Certificate to renew the certificate. |
| Check Revocation | Checks against certificate revocation lists (CRLs or OCSP) whether the certificate of the new connection has been revoked. The certificate must be signed by a valid certificate authority. |
| Ignore Revocation Check Failures if There Are Connectivity Problems | When selected, the server ignores all CRL check failures if the server cannot connect to CRL or OCSP server. This is done based on what is specified in the certificate. |
| Organization (O) | The name of your organization as it appears in the certificate. |
| Organization Unit (OU) | The name of your department or division as it appears in the certificate. |
| Country (C) | Standard two-character country code for the country of your organization. |
| State/Province (ST) | The name of state or province as it appears in the certificate. |
| Locality (L) | The name of the city as it appears in the certificate. |
| Common Name (CN) | The value for the Common Name field in the certificate request. For server certificates, the value is typically the fully qualified domain name (FQDN). |
| Public Key Algorithm | The algorithm used for the public key. |
| Key Length | The length of the key in bits. |
| Signature Algorithm | The signature algorithm that was used to sign the certificate. |
| Subject Alternative Name [DNS] | Enter a unique subject alternative name for the identity to be certified. |
| Generate Certificate Request | Generates the certificate request so that you can sign it using an external certificate authority. |