The IBM® Sametime® Community Server
port accepts connections from server applications and from peer Sametime Community Servers.
Use this task to enable or disable TLS on the Sametime Community Server
port. You can also use this task to change the listening address and
port, although it is recommended you use the default port number of
1516.
Procedure
- Log in to the Integrated Solutions Console.
- Click .
- In the Sametime Community
Servers list, click the deployment name of the server that you want
to change.
- Click the Connectivity tab.
- Under Server Connections, modify these fields:
- In the Host name field, specify
the host name or IP address that you want the server to listen to.
Leave blank to accept connections on all local addresses.
- In the Port field, specify the
port number you want the server to listen to. The Sametime Community Server
also uses this port number to connect to peer Sametime Community servers.
It is recommended you keep the default port number of 1516. If a different
port number is configured, it must be set to the same port number
across all servers in the community, as well as remote server applications.
- In the Server encryption mode field,
choose one of three options:
- Strict TLS - The Sametime Community Server
accepts only TLS connections. If you choose Strict TLS, enable TLS
for all other servers and server-side components in the community.
- Legacy Sametime encryption - The Sametime Community Server
does not accept TLS connections. Instead, connections are encrypted
using the Diffie-Hellman key exchange and RC2 encryption, as in Sametime 9 and below.
- Both allowed - The Sametime Community Server
allows both legacy-encrypted connections and TLS connections over
the same port. This setting is suitable for a mixed deployment of
old and new servers. Old servers and server applications use legacy
encryption. New servers and server applications establish a TLS connection.
Refer to the Security Considerations document for more information.
Note: To enable TLS on this port, you must set up the TLS configuration.