Administration and Maintenance > Set up Security > Set up an SSL Connection > Set up SSL between IDOL components

Set up SSL between IDOL components
If you are using a unified IDOL server configuration, you can enable SSL communication between IDOL components. Set the SSLIDOLComponents parameter to true in the [Server] section.
You can configure Secure Socket Layer (SSL) connections for communication between the following components and other IDOL components:
*
*
*
*
*
*
*
You can set SSLConfig in the following configuration sections for SSL communications between IDOL components:
*
[Server] to configure SSL communications for incoming ACI calls for all components.
*
[IndexServer] to configure incoming SSL communications to the IDOL server Index Port. This option implicitly includes any indexing components (such as Content or IndexTasks).
*
[Service] to configure incoming SSL communications to the IDOL server Service Port.
*
[Agent] to configure outgoing SSL communications from the Category component to the Content component where the IDOL server Agent index is stored (agentstore).
*
[AgentDRE] to configure outgoing SSL communications from IDOL components to the Content component where the IDOL server Agent index is stored (agentstore).
*
[CatDRE] to configure outgoing SSL communications from IDOL components to the Content component where the IDOL server Category index is stored (agentstore).
*
[DataDRE] to configure outgoing SSL communications from IDOL components to the Content component where the IDOL server Data index is stored.
 
NOTE For SSL communication with the Agentstore component, you must also configure SSL settings in the Agentstore configuration file.
For example:
[Server]
SSLConfig=SSLOptions1
...
[AgentDRE]
SSLConfig=SSLOptions2
...
[DataDRE]
SSLConfig=SSLOptions2
...
For Omni Group Servers:
[Note]
GroupServerHost=...
GroupServerPort=...
SSLConfig=SSLOptions2
[SSLOptions1]             //SSL options for incoming connections
SSLMethod=SSLV23
SSLCertificate=host1.crt
SSLPrivateKey=host1.key
SSLCACertificate=trusted.crt
[SSLOptions2]            //SSL options for outgoing connections
SSLMethod=SSLV23
SSLCertificate=host2.crt
SSLPrivateKey=9s7BxMjD2d3M3t7awt/J8A
SSLCACertificate=trusted.crt