Sa7150 configuration – HP e-CommerceXML Accelerator sa7150 User Manual

C H A P T E R 4 HP e-Commerce/XML Server Accelerator SA7150 User Guide

68

For the SA7150 to provide SSL services, the web server process
providing port 443 services requires two modifications.

•

First, because the SA7150 performs all of the SSL processing,
the web server process must be configured to expect only
standard HTTP (unencrypted) connections, even for sensitive
content.

•

Second, the web server process must be configured to listen for
these HTTP connections on a port other than the standard
HTTPS port (443). In this scenario we configure the port 443
service to listen on port 81.

SA7150 Configuration

The SA7150 must be configured to intercept HTTPS connections on
port 443 and forward them to the server. In the preceding section, we
configured the server to provide access to sensitive data through port
81, so that should be the clear text port when creating a server
assignment (or “map”) on the SA7150. Perform the following steps
to create the server assignment:

1. Perform the installation as described in Chapter 2 and access the

command line prompt.

2. Acquire the appropriate keys and certificates following the

procedure in the “Keys and Certificates” section in Chapter 3.

3. Create a mapping for the server. Use the create map command to

specify the server IP address, ports, and keyID.

HP SA7150> create map

Server IP (0.0.0.0): 1.1.1.3

SSL (network) port [443]:

Cleartext (server) port [80]: 81

KeyID to use for mapping: serv1

Port Number

Connection Type

Content Served

80

HTTP

Non-sensitive

81

HTTP

Sensitive