CA API Gateway 9.1

9.4 9.1

Start TLS on XMPP Session Assertion

The Start TLS on XMPP Session Assertion allows you to start TLS communication for an existing connection with an XMPP client or server. In the case of communicating with a client, this assertion will also send a message unencrypted immediately before enabling TLS communication.
gateway90
The
Start TLS on XMPP Session Assertion
 allows you to start TLS communication for an existing connection with an XMPP client or server. In the case of communicating with a client, this assertion will also send a message unencrypted immediately before enabling TLS communication.
To learn about selecting the target message for this assertion, see Select a Target Message.
Using the Assertion
  1. Do one of the following:
    • To add the assertion to the Policy Development window, see Add an Assertion.
    • To change the configuration of an existing assertion, proceed to step 2 below.
  2. When adding the assertion, the Start TLS on XMPP Session Properties automatically appear; when modifying the assertion, right-click 
    Start TLS on XMPP Session
     in the policy window and choose
    Start TLS on XMPP Session Properties
     or double-click the assertion in the policy window. The assertion properties are displayed.
  3. Configure the properties as follows:
    Setting
    Description
    Session ID
    Enter the ID of the session in which to start TLS communication.
    Direction
    For this drop-down list, specify in which direction the session is going from the Gateway, whether to the XMPP client or to an XMPP server.
    Private Key
    For this drop-down list, choose a private key that the Gateway should use. This is optional if communicating with an XMPP server, but required if communicating with an XMPP client.
    Client Authentication
    Required
    For this drop-down list, choose whether the authentication is required to the
    XMPP Client, XMPP Server
    , or 
    None.
     
    To XMPP Client:
     In this case, this setting specifies whether the client can or must provide a client certificate. 
    To XMPP Server:
     In this case, this setting specifies whether the Gateway will present a client certificate if enabled on the XMPP server.
  4. Click [
    OK
    ] when done.

Content feedback and comments