Setup guide
SSL Behavior
When SSL is active on secure pages, several things will occur in the web browser:
• The browser will display an SSL icon (usually a padlock or shield) either in the Address bar or
the Status bar.
• The SSL icon may be double clicked to see details about the SSL certificate, such as Certificate
Authority, Encryption Level, etc.
• The browser’s URL will begin with https:// rather than http://.
• If the certificate in use is not signed by a trusted authority, the browser will display a warning
about an untrusted certificate.
SSL Types
The three SSL Types on the Admin > Settings > SSL page are:
None
SSL is inactive. No SSL padlock icons will appear in the browser. Passwords are transmitted in
plain text.
Self-Signed
Built-In self-signed SSL certificate signed by “SAFARI Montage.” Because this certificate is not
signed by a trusted certificate authority (such as VeriSign, Thawte, or Comodo), it will cause
browser warnings to appear. If the user does not trust this certificate permanently, the warnings
will reappear the next time the user accesses SAFARI Montage. These warnings do not mean the
pages are not secure. Regardless of whether the user trusts the certificate or not, an SSL icon will
still display in the browser’s Address bar or Status bar indicating that these pages are still
completely encrypted. Different browsers have different ways of letting the user trust a
certificate. Refer to your browser’s documentation to find out more about trusting SSL
certificates.
With the Self-Signed certificate type, no certificate needs to be uploaded. This certificate type is
available as a convenience to organizations that do not want to pay for a commercial certificate
to use while they are waiting for their commercial certificate, or simply do not mind the one-time
browser warnings. Prior to selecting this Self-Signed Certificate option, it is a good idea for the
Systems Administrator to send out an email to all SAFARI Montage users asking them to