Thin Client SSL connection
Posted: Wed Jan 25, 2012 4:32 am
Hi,
We have a thin client user who have said that they no longer want to use VPN's on their network and need a new way to access the software. We have a web application which can be used but it's an ongoing development and does a fraction of what the thin client can do, so they're not wanting to move onto it. We've found that you can add sections into the INI files at both the client and server ends which allow an SSL connection for the thin client, however, we're having problems getting it to work.
At the moment, i'm only trying to get the very basic set up working without any emphasis being placed on certificates etc (I'm using an empty test system for this). So far, i've added the following attributes to the relevant sections in each INI file:
-- Server Side --
[JadeAppServer]
RPCEncryptionEnabled=true
RPCEncryptionHookDLL=SSL_TLS
SSLSecurePort=<portnum>
SSLCertificateFile=C:\Jade62\c_bin\server.pem *Currently using the default server.pem file in the binary directory.
-- Client Side --
[JadeThinClient]
RPCEncryptionEnabled=true
RPCEncryptionHookDLL=SSL_TLS
SSLSecurePort=<portnum>
When set up in this way, i'm getting a proxy error saying that ISA isn't allowing SSL traffic through that port - however i'm confident that it should be doing. We do use a proxy internally, but i get this same error when turning all proxy settings off... even if i remove the Windows Registry entry...!
I've read through various sections of the Jade documentation and can't see why the above set up won't work, albeit with very basic security. I understand the error appears to be un-Jade related but i can't help but think that it must be something missing from the INI files, ISA is definitely allowing SSL through that port.
If anybody has ever set up a thin client connection in this way, any help would be very appreciated.
Cheers!
Rich
We have a thin client user who have said that they no longer want to use VPN's on their network and need a new way to access the software. We have a web application which can be used but it's an ongoing development and does a fraction of what the thin client can do, so they're not wanting to move onto it. We've found that you can add sections into the INI files at both the client and server ends which allow an SSL connection for the thin client, however, we're having problems getting it to work.
At the moment, i'm only trying to get the very basic set up working without any emphasis being placed on certificates etc (I'm using an empty test system for this). So far, i've added the following attributes to the relevant sections in each INI file:
-- Server Side --
[JadeAppServer]
RPCEncryptionEnabled=true
RPCEncryptionHookDLL=SSL_TLS
SSLSecurePort=<portnum>
SSLCertificateFile=C:\Jade62\c_bin\server.pem *Currently using the default server.pem file in the binary directory.
-- Client Side --
[JadeThinClient]
RPCEncryptionEnabled=true
RPCEncryptionHookDLL=SSL_TLS
SSLSecurePort=<portnum>
When set up in this way, i'm getting a proxy error saying that ISA isn't allowing SSL traffic through that port - however i'm confident that it should be doing. We do use a proxy internally, but i get this same error when turning all proxy settings off... even if i remove the Windows Registry entry...!
I've read through various sections of the Jade documentation and can't see why the above set up won't work, albeit with very basic security. I understand the error appears to be un-Jade related but i can't help but think that it must be something missing from the INI files, ISA is definitely allowing SSL through that port.
If anybody has ever set up a thin client connection in this way, any help would be very appreciated.
Cheers!
Rich