What must a Citrix Administrator do to encrypt XML traffic between StoreFront and the Delivery Controllers?
A. Install a private server certificate on each StoreFront server and then add a new Internet Information Services (IIS) binding for HTTPS.
B. Install a private server certificate on each Delivery Controller and bind the certificates to port 443.
C. Install a private certificate on each Delivery Controller and StoreFront server. Restart each server to force XML communication to be encrypted.
D. Install a private server certificate on each StoreFront server. Open the StoreFront console and use the https:// prefix with the base URL.
To achieve secure XML traffic between DC and SF you need:
1. On DC create certificate and bind it to 443 port;
2. Change DC connection settings on SF server to communicate over 443 port;
You do not need to install certificate on StoreFront at all to achieve this specific goal.
Correct answer is B tho it is incomplete.
B is correct.
https://c4rm0.wordpress.com/secure-xml-traffic-between-storefront-and-delivery-controller/
new Internet Information Services (IIS) binding for HTTPS is required , why no A ?
B
It’s definitely B, can’t be A
Good luck binding a certificate to a network port. You need a listener process or service to do that.
I think its B
https://www.jgspiers.com/securing-ddc-xml-broker-communication-over-https/
” This means, for me, I need to install a computer certificate on my Delivery Controller with Server Authentication capabilities, issued to ddc.citrixpro.co.uk and then tied to port 443 and the Citrix Broker Service.”