28
Using Server Admin, you can take advantage of additional options for securing S2S communications. These options include filtering domains where servers are matched against a given list.
To enable or disable S2S communication:
1Open Server Admin and connect to the server.
2Click the triangle to the left of the server. The list of services appears.
3From the expanded Servers list, select iChat.
4Click Settings, then click General.
5Select or deselect “Enable XMPP
6Select the “Require secure
This restricts S2S communication and allow only iChat to connect with servers that support encrypted connections through SSL/TLS. This means that only servers that support TLS are allowed to communicate with your iChat server.
This option requires a Secure Socket Layer (SSL) certificate to be installed, which is used to secure the S2S federation. For more information, see “Securing S2S Connections” on page 28.
7Set which domains are included in the S2S federation.
Select “Allow federation with all domains” to permit unrestricted S2S communication.
Select “Allow federation with the following domains” to restrict S2S communication to listed servers.
You can add or remove domains using the Add (+) or Delete
8Click Save.
Securing S2S Connections
Using Server Admin, you can take advantage of additional security options for S2S communication. These options include using SSL certificates and filtering domains where servers are matched to those on a given list.
To learn more, see the following topics:
“Using Certificates to Secure S2S Communication”
“Creating an Approved Federation Domain List”
“Integrating with Directory Services”
“Setting the iChat Authentication Method”
Using Certificates to Secure S2S Communication
Using Server Admin, you can secure S2S communication with certificates.
Chapter 3 Setting Up Advanced iChat Service Configurations
