Thanks Carl. The reason i ask about this configuration is because the license server is going to installed on this box as well. Since the license server requires that IIS to be installed, hence my confusion about IIS and SSL. considering i'm going to have IIS on this box, what would you recommend ? On 11/9/06, Carl Stalhood <cstalhood@xxxxxxxxxxxxx> wrote:
By default, the STA is built into the independent XML service. It is far easier and preferable to simply ignore IIS and use SSLRelay to SSL encrypt the XML service. If you want IIS to handle the STA, Citrix has a KB article on how to share XML with IIS after PS is installed. It is quite a few steps so it is easier to share with IIS during the install of PS. Once XML (which includes STA) is sharing with IIS, then you can implement SSL on IIS. Note, you can do both the IIS sharing (port 80/443) and the independent XML service (port 88). If you install PS and configure it to share with IIS, after the install you can install the independent XML service. Simply run CTXXMLSS /R088. Then open Services and start the Citrix XML Service. ------------------------------ *From:* thin-bounce@xxxxxxxxxxxxx [mailto:thin-bounce@xxxxxxxxxxxxx] *On Behalf Of *hboogz *Sent:* Thursday, November 09, 2006 11 <javascript:void(0)>:51 AM *To:* thin@xxxxxxxxxxxxx *Subject:* [THIN] Re: STA and SSL Relay ? Carl, Thanks for the reply. If i changed the XML port during the CPS setup to 88 and i still wanted IIS to handle SSL....can i still do it ? or do i need to select the " Share default port with IIS" I believe the sharing only is particular about the XML port you choose and you could still either choose 443 via IIS or 443 via SSL Relay. thoughts ? On 11/9/06, *Carl Stalhood* <cstalhood@xxxxxxxxxxxxx> wrote: It works without SSLRelay if you are not interested in implementing SSL for the STA. If you want SSL, use SSLRelay instead of configuring SSL in IIS. The old way was to configure SSL in IIS and the new way is to use SSLRelay. ------------------------------ *From:* thin-bounce@xxxxxxxxxxxxx [mailto: thin-bounce@xxxxxxxxxxxxx] *On Behalf Of *hboogz *Sent:* Thursday, November 09, 2006 9:53 AM *To:* thin@xxxxxxxxxxxxx *Subject:* [THIN] STA and SSL Relay ? I am planning on rebuilding my small single server farm. I currently only have a max of 15 users concurrently connecting. I currently have XPe FR3 with STA on a single box on the private LAN and WI 3.0/CSG 2.0 on the same box sitting on the DMZ. I plan on keeping the same type of setup but completely rebuild the CPS box to version 4.0. I was reading the admin guide and it mentioned that STA is built into the XML port. I previously had the XML port set to 88. I still would like to use this as my XML port because this one CPS 4.0 box is going to have CPS 4.0, License Server and STA ( built into XML) This excerpt from the admin guide is confusing. I never touched the SSL replay component before and am wondering what needs to be done in order for my setup to work as it has been ? Thanks in advance guys and keep up the great work! -- HBooGz:\> -- HBooGz:\>
-- HBooGz:\>