14.2 Configuring SSL/TLS for the ZENworks Server

To meet the best practices for security, ZENworks requires the use of SSL or TLS for communication between managed devices, Primary Servers and Authentication servers.

If the sslProtocol value is not specified, TLS is considered as the default value. The sslEnabledProtocols value can include a list of values that comprise a combination of any of the following: TLSv1, TLSv1.1, TLSv1.2, all. For communication, the best cipher and protocol are decided mutually by the client and the server. You can configure sslEnabledProtocols for the server by performing the following steps:

  1. Stop the Novell ZENworks Server service.

  2. Take a backup of the %ZENWORKS_HOME%\share\tomcat\conf\server.xml file and then open the file.

  3. In the server.xml file, search for the Connector entries and configure the values for the sslEnabledProtocols parameter.

  4. Save the server.xml file.

  5. Run the novell-zenworks-configure –c Start command and restart the Novell ZENworks Server service.

NOTE:For more information, see the Apache Tomcat 8 Configuration Reference.