Configuring SaaS Acceleration : Configuring SaaS acceleration on the client-side appliance
  
Configuring SaaS acceleration on the client-side appliance
When you have configured SAM for SaaS acceleration, you can configure client-side appliances.
To configure a client-side appliance for acceleration
1. Choose Configure > SaaS Apps: Client Appliances, and then copy the registration token.
2. On the appliance, choose Optimization > SaaS: SaaS Accelerator and add these values:
SaaS Accelerator Manager Hostname.
SaaS Accelerator Manager Port. The client-side appliance uses port 3900 from the primary interface to communicate with SAM and the port needs to be open on the branch firewall. The field for the port number is editable but we recommend not changing the value.
Registration Token. Paste the registration token you copied in the previous step into this field.
3. Click Register.
When the registration process completes, the registration details and a helpful list of remaining configuration tasks appear on the page. Completed tasks are prefaced by a check mark.
A new SaaS Acceleration section appears on the page, and you can view the current status and monitor acceleration status.
4. Enable SSL optimization on the appliance.
Choose Optimization > SSL Main Settings.
In the General SSL Settings section, select Enable SSL Optimization and click Apply.
5. In SAM, move this appliance to the whitelist.
Newly added appliances always appear on the graylist in the Access List column. You need to move their status to the whitelist to allow acceleration.
Choose Configure > SaaS Apps: Client Appliances, and then select the appliance serial number to display the details pane.
Under Access List, select Whitelist from the Access list drop-down list and click Submit. For more information, see Controlling appliance access.
6. Enable SaaS acceleration on this client-side appliance.
Choose Optimization > SaaS: SaaS Accelerator.
Select Enable Acceleration, and click Apply.
7. Optionally, enable proxy chaining interoperability. See To enable or disable proxy chaining interoperability on a client-side appliance.
For more details about proxy chaining, see Configuring proxy chaining.
8. Add an in-path rule to accelerate SaaS applications. See To add an in-path rule on a client-side appliance.
The in-path rule is application based or application-bundle based and lets the client-side appliance connect to the service endpoint of the SaaS service cluster deployed for the selected application.
For more information about in-path rules, see the SteelHead User Guide.
9. Click Save to Disk.
10. Verify the configuration by generating SaaS traffic.
For details about monitoring the first connections, see Monitoring initial SaaS traffic.
To enable or disable proxy chaining interoperability on a client-side appliance
1. On the appliance, choose Optimization > SSL: Advanced Settings.
2. Under the Proxies section, select the Enable SSL Proxy Support check box.
3. Click Apply.
The appliance restarts.
4. On the appliance, return to Optimization > SaaS: SaaS Accelerator.
5. Under the Enable Acceleration option, select the Proxy Chaining Interoperability check box.
6. Click Apply.
To disable the proxy chaining interoperability feature, click the Proxy Chaining Interoperability check box and click Apply.
To add an in-path rule on a client-side appliance
1. In the client-side appliance GUI, choose Optimization > Network Services: In-Path Rules.
2. Click Add a New In-Path Rule.
3. For the Source subnet, select All IPv4.
4. For the Destination Subnet, select SaaS Application.
A second menu appears to the right.
5. In the second menu, select a SaaS application, or application bundle, for acceleration.
Only applications and application bundles set up for SaaS acceleration on SAM appear in the list.
6. Click Add.