search cancel

Steps to enable SSL for VIP Enterprise Gateway SSP

book

Article ID: 241309

calendar_today

Updated On:

Products

VIP Service

Issue/Introduction

How do we enable SSL for EG SSP?

Environment

Release : 9.9.2

Component : Enterprise Gateway

Resolution

Follow these steps to enable SSL for SSP:
1. Add a CA to the Trusted CA Store, if your SSL certificate is not issued from a public Issuing Authority. Refer the section 'Adding Trusted CA Certificates' in

https://techdocs.broadcom.com/us/en/symantec-security-software/identity-security/vip/cloud/vip-enterprise-gateway-v127046045-d2278e2615/VIP-Enterprise-Gateway-Installation-Configuration/about-the-v119936153-d2362e2151/adding-trusted-ca-certificates-v119936256-d2362e7502.html#v119936256 

2. Configure SSL certificates in VIP Enterprise Gateway as mentioned in documentation link

https://techdocs.broadcom.com/us/en/symantec-security-software/identity-security/vip/cloud/vip-enterprise-gateway-v127046045-d2278e2615/VIP-Enterprise-Gateway-Installation-Configuration/about-the-v119936153-d2362e2151/configuring-ssl-certificates-in-v119936220-d2362e7322.html.

3. In Identity Providers -> Self Service Portal IdP configuration page,
(i) Update protocol in 'Load Balancer URL' from http to https.
For example, https://<EG_HOST>:<SSL_PORT>
(ii) Change 'Protocol' from http to 'https (SSL Enabled)'.
(iii) Select the SSL Key.
(iv) Click on 'Apply Changes & Restart'