You can create SSL pools to group a set of PCA servers together so that the PCA servers can share SSL session information.
If you configure a group of PCA servers into an SSL pool, an SSL session that was started on one PCA server can be resumed on another PCA server within the pool. This capability gives you that ability to configure multiple PCA servers in your Tealeaf environment. Additionally, SSL pooling can be used to prevent queuing and potential data loss if an originating PCA server cannot continue to process the SSL session.
Use the following procedure to add a PCA server in to an SSL pool.
- Go to the PCA Web Console.
- Select the SSL tab and scroll down to the SSL Pool Configuration.
The PCA server that you are logged in to is automatically listed in the pool configuration.
- Select Add to enter the network information for any additional PCA servers in the SSL pool.
- Enter the IP address for the additional PCA server into the Host Address field.
- Enter the port number for the additional PCA server into the Host Port field.
- Select OK to continue.
- After the PCA server is added to the pool configuration, a confirmation message is displayed. Select OK to return to the SSL Pool Configuration.
- If you have an additional PCA server to add to the pool configuration, repeat step 3.
- In the Tuning Parameters For Local Host field, enter the size of the memory cache.
The memory cache contains the SSL session information for the local server. The default value is 256 MB.
- Click Save Pool Changes to save and apply your SSL pool configuration.
The pool configuration for each PCA server in the SSL pool must be added to each PCA server. Log in to the Web Console for each PCA server that belongs to the SSL pool and repeat this procedure.