groov
Box User’s Guide
41
41
2104_Using_SSL_Certificate.fm: Chapter 4
4: Using an SSL Certificate
groov
uses an SSL certificate to encrypt communications and prove
groov
’s identity to client
browsers. An SSL certificate contains the server name, the name of the organization that controls
the server, and digital signatures of organizations that vouch for the authenticity of the certificate.
The certificate is digitally signed either by a
certificate authority
(CA) or it is
self-signed
.
The default certificate type (a self-signed certificate) and configuration will cause your web browser
to issue an untrusted site warning when accessing
groov
. To avoid the warning you can install the
self-signed certificate in all the browser certificate stores used to access
groov
. However, whether or
not the certificate is installed in the certificate stores, communication is always encrypted.
Here’s a comparison of the certificate types:
If you are using a
self-signed certificate
, see
“Using a Self-Signed Certificate” on page 42
.
If you are using a
CA-signed certificate
, see
“Using a CA-Signed Certificate on
.
Self-Signed Certificate (default)
Self-Signed Certificate installed on
all browser certificate stores
CA-Signed Certificate
Best Use
For one or two
groovs
and a small set
of client browsers that remain pretty
much the same, and users who trust
that your certificate is valid
Same as default, plus it avoids seeing
the untrusted site warning from the
browser
Use with a system with many
groovs
,
or the set of browsers that will access
groovs
is unknown or changes fre-
quently, or users who will not trust
your self-signed certificate
Cost
Free
Free
Public CA-signed certificates cost
anywhere from $9 to $100 or more per
year
Ease of
Configuration
Easiest configuration
Must install in the browser certificate
store for every browser that accesses
the server
More complex initial configuration
because a certificate authority signa-
ture must be obtained
Untrusted
Site Warning
Browser raises untrusted site warning.
(But communication is still encrypted.)
No untrusted site warning from
browser
No untrusted site warning from
browser. Trusted by all major brows-
ers.
Trust Level
Trusted by those to whom the
groov
administrator has demonstrated the
validity of the certificate (e.g. by pro-
viding the
s).
Trusted by those who trust the
groov
administrator enough to install or let
him or her install the certificate in their
browser certificate store
Trusted by everyone
Summary of Contents for GROOV BOX
Page 1: ...GROOV BOX USER S GUIDE FOR GROOV AT1 Form 2077...
Page 7: ...groov Box User s Guide for GROOV AT1 vi...
Page 23: ...STEP 10 CREATE NEW USERNAMES AND PASSWORDS groov Box User s Guide for GROOV AT1 16...
Page 47: ...SETTING THE SYSTEM TIME groov Box User s Guide 40...
Page 67: ...TROUBLESHOOTING groov Box User s Guide for GROOV AT1 60...
Page 69: ...DIMENSIONS groov Box User s Guide for GROOV AT1 62 Dimensions...