Knowledgebase: Servers > JSCAPE MFT Server
Using SSL / TLS certificates in JSCAPE MFT Gateway
Posted by John Villanueva, Last modified by Van Glass on 13 August 2020 12:33 PM

Certificates in JSCAPE MFT Gateway and in JSCAPE MFT Server

If an HTTPS reverse proxy service on MFT Gateway is fronting any HTTPS server, be it the HTTPS service on JSCAPE MFT Server, Apache, or any other similar server application, the SSL certificate must be installed on MFT Gateway and bound to the HTTPS proxy service. The SSL digital certificate on the proxied server will be unused. 

The SSL cert that will be seen/returned to the browser will be that of the HTTPS proxy service on MFT Gateway. This is assuming an 'HTTPS to HTTPS' or HTTPS to HTTP' reverse proxy service is used. It is also possible to use a 'TCP to TCP' (raw) reverse proxy service to proxy an HTTPS service (or any TCP-based service for that matter), but in this case, the SSL cert on the proxied HTTPS service will be the one used, and not the one on MFT Gateway.

Certificates on an MFT Gateway instance fronting multiple HTTPS servers

If there are multiple instances of MFT Server (not clustered) behind MFT Gateway and you want to use SSL certificates, you may configure each of the HTTPS reverse proxy services (on MFT Gateway) to use separate SSL certs. This is unlike what's done in JSCAPE MFT Server, wherein all HTTPS services on all domains share a single SSL cert.

(0 vote(s))
This article was helpful
This article was not helpful

Comments (0)
Post a new comment
 
 
Full Name:
Email:
Comments:
CAPTCHA Verification 
 
Please enter the text you see in the image into the textbox below. This is required to prevent automated registrations and form submissions.

Help Desk Software by Kayako jscape.kayako.com