Add an additional proxy on Windows

After the first Edge Encryption proxy is configured, you can set up additional proxies on Windows.

About this task

Note: Make sure that all proxies have the same encryption keys and the same RSA key pair used to digitally sign encryption configuration and encryption rules. If a proxy database is set up as part of the installation, all proxies must use the same proxy database.

Procedure

  1. Install the proxy using the command for Windows. See Install the encryption proxy on Windows
  2. Copy the encryption keys and the edgeencryption.properties file from the first proxy to the new proxy.
    Encryption keys may be located in the proxy keystore, in the /keys directory, or in a SafeNet KeySecure keystore.
  3. Open the edgeencryption.properties file on the new proxy and change the following properties:
    Property Description
    edgeencryption.proxy.name Unique name of the proxy server.
    edgeencryption.proxy.host The server name, IP address, or fully qualified domain name of the computer running the proxy. Do not change this property if installing the proxy server on the same machine the properties file was copied from.
    edgeencryption.proxy.http.port Port on the proxy for HTTP communication. Must be unique across processes on the machine.
    edgeencryption.proxy.https.port Port on the proxy for HTTPS communication. Must be unique across processes on the machine.
  4. Caution: You must perform this step before launching the proxy server.
    Open the conf/wrapper.conf file on the new proxy and add the following properties:
    Property Description
    wrapper.ntservice.name Unique name of the Edge Encryption proxy service.
    wrapper.ntservice.displayname Edge Encryption proxy service display name.
    wrapper.ntservice.description (Optional) Proxy server description.
  5. Save and close the file.
  6. Launch the proxy using the appropriate command. See Start the Edge Encryption proxy.