Managing server connections

The IBM® Sametime® Community Server port accepts connections from server applications and from peer Sametime Community Servers. Use this task to enable or disable TLS on the Sametime Community Server port. You can also use this task to change the listening address and port, although it is recommended you use the default port number of 1516.

Procedure

  1. Log in to the Integrated Solutions Console.
  2. Click Sametime System Console > Sametime Servers > Sametime Community Servers.
  3. In the Sametime Community Servers list, click the deployment name of the server that you want to change.
  4. Click the Connectivity tab.
  5. Under Server Connections, modify these fields:
    1. In the Host name field, specify the host name or IP address that you want the server to listen to. Leave blank to accept connections on all local addresses.
    2. In the Port field, specify the port number you want the server to listen to. The Sametime Community Server also uses this port number to connect to peer Sametime Community servers. It is recommended you keep the default port number of 1516. If a different port number is configured, it must be set to the same port number across all servers in the community, as well as remote server applications.
    3. In the Server encryption mode field, choose one of three options:
      • Strict TLS - The Sametime Community Server accepts only TLS connections. If you choose Strict TLS, enable TLS for all other servers and server-side components in the community.
      • Legacy Sametime encryption - The Sametime Community Server does not accept TLS connections. Instead, connections are encrypted using the Diffie-Hellman key exchange and RC2 encryption, as in Sametime 9 and below.
      • Both allowed - The Sametime Community Server allows both legacy-encrypted connections and TLS connections over the same port. This setting is suitable for a mixed deployment of old and new servers. Old servers and server applications use legacy encryption. New servers and server applications establish a TLS connection. Refer to the Security Considerations document for more information.
      Note: To enable TLS on this port, you must set up the TLS configuration.