Controlling appliance access
When a client-side appliance registers with SAM, the appliance is added to the access list on the SaaS Accelerator Client Appliances page. An entry appears in the peering list with the appliance serial number, access list status, peering certificate status, date of last contact, and notes. The access lists are designated by these categories:
• Graylist - Indicates an appliance of unknown status. This list serves as a temporary holding place for all registered appliances that are attempting to establish SaaS acceleration. You can move these appliances to the whitelist or blacklist, but you cannot move appliances to the graylist.
• Whitelist - Indicates a trusted appliance. When you move an appliance to the whitelist, the appliance’s peering certificate is copied to the SaaS service cluster and other peer appliances. Once an appliance has been whitelisted, subsequent peering CA uploads automatically replace the older peering CA and changes are pushed out to the SaaS service cluster and SAM managed appliances.
• Blacklist - Indicates untrusted appliances. When you select blacklist for a peer in a whitelist or graylist, SAM removes the peering CA that it uploaded from the appliance and stops acceleration. You can move appliances between the whitelist and the blacklist. (Note: Connections are expected to fail for approximately an hour when moved from the blacklist to the whitelist.)
When you have configured appliances to use the SaaS acceleration service, you need to move those systems to the whitelist on SAM to indicate trust and allow acceleration.
To change the access list status for an appliance
1. In SAM, choose Configure > Client Appliances.
2. Select the appliance to change.
The appliance settings pane appears.
3. From the Access list drop-down list, select the type of list for the appliance.
4. Click Submit.