89CS 1000 Telephony Manager Installation and ConfigurationConfiguring Secure Sockets Layer (SSL)ContentsThis section contains information about the following topics:Overview . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 89Installing a server certificate in IIS . . . . . . . . . . . . . . . . . . . . . . . . . . . . 89Configuring SSL on the TM 3.0 server platform . . . . . . . . . . . . . . . . . 90Enabling SSL for TM 3.0 Web login . . . . . . . . . . . . . . . . . . . . . . . . . . 90Importing TM 3.0 Root Certificate . . . . . . . . . . . . . . . . . . . . . . . . . . . . 91Setting up CND SSL . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 91OverviewTo use Secure Sockets Layer (SSL) in Web applications, a server certificate must beinstalled in Internet Information Services (IIS). The key-storage file, which containsboth private and public keys and is password- protected, must be used for the certificateto become valid. Private and public keys are used by the browser and IIS to negotiateencryption.Installing a server certificate in IISTM 3.0 server can be configured to use SSL to protect passwords in network transportduring the login sequence. For the SSL transport to become fully operational, an SSLserver certificate must be installed in IIS. You can obtain your own server certificatefrom a trusted authority (for example, Verisign) or generate your own certificate usinga certificate server. This document assumes you have already obtained a servercertificate and only describes the steps required to install the certificate.