Configuring SSL : Basic steps for configuring SSL proxy support
  
Basic steps for configuring SSL proxy support
These tables describe the basic steps for configuring SSL proxy support in the controller and the SteelHead.
This table lists the tasks to be completed at the controller, along with the section where you can find details about the task.
Client Accelerator Controller task
Reference
1. Enable the SSL proxy support feature.
Choose Manage > Services: Policies. Click the policy name and select the SSL tab. Then select the Enable SSL Optimization check box and the Enable SSL Proxy Support check box. For details, see About policy settings for SSL.
2. Add the in-path rules for the SSL proxy.
Choose Manage > Services: Policies and select the In-Path Rules tab. Add an in-path rule that applies SSL preoptimization to all connections going through the SSL proxy. For details, see About policy settings for in-path rules.
When non-SSL connections go through the SSL proxy, the in-path rule is applied and the connections are included in the SSL connection totals.

However, since the connection is a non-SSL connection, it is considered an unsuccessful SSL connection and is reflected as such on the Status display for the SteelHead as shown in the example below:

SSL Connections (Successful/Total): 25675/50624

The unsuccessful connections (that is, the non-SSL connections) will also be reflected in the SSL endpoint reports on the controller (Reports > Endpoints: SSL).
3. Export the Client Accelerator certificate to the SteelHead.
Complete this step at the SteelHead.
At the SteelHead, choose Optimization: SSL: Secure Peering. For details, see the SteelHead User Guide.
4. Import the SteelHead certificate to the controller.
Choose Administration > SSL: Peering > Add a New Trusted Entity. For details, see Configuring controller-to-SteelHead peering.
This table lists the tasks to be completed at the SteelHead, along with the section where you can find details about the task.
SteelHead task
Reference
1. Enable the SSL proxy support feature.
Choose Optimization > SSL: Advanced Settings. Be sure to select the Enable SSL Proxy Support check box. For details, see the SteelHead User Guide.
2. Create the server certificate on the SteelHead.
Choose Optimization > SSL: SSL Main Settings > SSL Server Certificates. For details, see the SteelHead User Guide.
3. Import the Client Accelerator certificate to the SteelHead.
This step consists of two parts: one completed at the controller and one completed at the SteelHead.
On the controller, choose Administration > SSL: Signing CA. For details, see, To configure SSL peering.
On the SteelHead, choose Optimization > SSL: Secure Peering (SSL) > Mobile Trust. For details, see the SteelHead User Guide.