Managing The Imported Ssl Keys Of A Sensor - McAfee M-1250 - Network Security Platform Configuration Manual

Ips configuration guide version 5.1

Hide thumbs Also See for M-1250 - Network Security Platform:

Upgrade manual (58 pages)

Deployment manual (36 pages)

Manual (32 pages)

Table Of Contents

100

101

102

103

104

105

106

107

108

109

110

111

112

113

114

115

116

117

118

119

120

121

122

123

124

125

126

127

128

129

130

131

132

133

134

135

136

137

138

139

140

141

142

143

144

145

146

147

148

149

150

151

152

153

154

155

156

157

158

159

160

161

162

163

164

165

166

167

168

169

170

171

172

173

174

175

176

177

178

179

180

181

182

183

184

185

186

187

188

189

190

191

192

193

194

195

196

197

198

199

200

201

202

203

204

205

206

207

208

209

210

211

212

213

214

215

216

217

218

219

220

221

222

223

224

225

226

227

228

229

230

231

232

233

234

235

236

237

238

239

240

241

242

243

244

245

246

247

248

249

250

251

252

253

254

255

256

257

258

259

page of 259

/ 259
Contents
Table of Contents
Bookmarks

Table of Contents

McAfee® Network Security Platform 5.1

Figure 205: Configuring the Sensor's SSL functionality

Managing the imported SSL keys of a Sensor

The

SSL Decryption > Key Management

SSL keys that have been imported to Manager for a single Sensor_Name instance.

Three actions can be performed here:

•

Importing SSL keys to the Manager for a Sensor

The

keys to Manager for a single

pushed to the Sensor via

decrypt SSL traffic for IPS inspection. Manager provides a passthru interface for you to

import a set of public/private keys to the Sensor. Manager stores an escrow of the

imported keys for Sensor recovery purpose. However, Manager does not interpret the

escrowed keys, nor does it attempt to recover the keys themselves in case a Sensor has

SSL Cache Time

Enter a value for the

The value represents the length in time a session is kept alive after the last

connection closes. This value should be equal to or slightly longer than the session

cache time on the corresponding server.

Note:

Because one Sensor could be processing traffic destined to many

servers, the number of sessions the Sensor can maintain may be considerably

lower than the number the servers can maintain. If the Sensor runs out of

session state, which is indicated by an alert in the Threat Analyzer, some flows

will not be processed.

SSL Operation Status

Note the

Sensor is currently enabled.

Apply

Click

. If you are enabling/disabling SSL or have changed the SSL Flow Count,

you are prompted to reboot the Sensor for proper functionality.

Key Management

Sensor_Name > SSL Decryption > Key Management

action (

(in the case of a failover pair)) enables you to manage the

Importing SSL keys to Manager for a Sensor (on page 206)

Re-importing an SSL key file (on page 107)

Deleting SSL key files from Manager (on page 208)

SSL Decryption > Key Import

action enables you to download Secure Socket Layer (SSL)

Sensor_Name

Update Configuration

. This time relates to session resumption in SSL.

. This field indicates whether or not SSL decryption on the

node. Once imported to Manager, keys can be

. Using provided SSL keys, a Sensor can

206

The IPS Sensor_Name node

Failover pair Name >

Table of Contents

This manual is also suitable for:

Network security platform

Managing The Imported Ssl Keys Of A Sensor - McAfee M-1250 - Network Security Platform Configuration Manual

Managing the imported SSL keys of a Sensor

Related Manuals for McAfee M-1250 - Network Security Platform

Related Content for McAfee M-1250 - Network Security Platform

This manual is also suitable for:

Table of Contents