
Chapter 10. Baseline security framework 249
Figure 10-5 Web traffic overview
The dashed lines represent stand-by routes that are only activated by the failure
of a primary Network Dispatcher.
10.6.6 External SSL configuration
Per default, WebSEAL creates an SSL certificate for external communications
during installation; this certificate is self-signed. The users are forced to accept
the certificate every time they connect to the WebSEAL server via SSL.
Instead of using the self-signed certificate, you should request an external
certificate from your Certificate Authority. See “Key database” on page 538, for
instructions on how to add a cert