Filter
Top Products
28 Chapter 3 Setting Up Advanced iChat Service Configurations
Using Server Admin, you can take advantage of additional options for securing S2S
communications. These options include filtering domains where servers are matched
against a given list.
To enable or disable S2S communication:
1 Open Server Admin and connect to the server.
2 Click the triangle to the left of the server.
The list of services appears.
3 From the expanded Servers list, select iChat.
4 Click Settings, then click General.
5 Select or deselect “Enable XMPP server-to-server federation.”
6 Select the “Require secure server-to-server federation” checkbox.
This restricts S2S communication and allow only iChat to connect with servers that
support encrypted connections through SSL/TLS. This means that only servers that
support TLS are allowed to communicate with your iChat server.
This option requires a Secure Socket Layer (SSL) certificate to be installed, which is used
to secure the S2S federation. For more information, see “Securing S2S Connections” on
page 28.
7 Set which domains are included in the S2S federation.
Select “Allow federation with all domains” to permit unrestricted S2S communication.
Select “Allow federation with the following domains” to restrict S2S communication to
listed servers.
You can add or remove domains using the Add (+) or Delete (–) buttons below the list.
8 Click Save.
Securing S2S Connections
Using Server Admin, you can take advantage of additional security options for S2S
communication. These options include using SSL certificates and filtering domains
where servers are matched to those on a given list.
To learn more, see the following topics:
 “Using Certificates to Secure S2S Communication”
 “Creating an Approved Federation Domain List”
 “Integrating with Directory Services”
 “Setting the iChat Authentication Method”
Using Certificates to Secure S2S Communication
Using Server Admin, you can secure S2S communication with certificates.