Configuring Incoming Tunnel Connections

By default, CommCell components accept both secure (HTTPS) and unsecure (HTTP) tunnel connection requests.

You can configure client computers and client computer groups to receive only secure connections. This forces all incoming tunnel connections to use HTTPS by authenticating and setting up HTTPS encryption.

Before You Begin

  • If your clients are separated by a firewall, review the supported firewall types described in Firewall: Overview, then configure the CommCell components as appropriate for your installation.
  • If your clients are not separated by a firewall, configure a one-way firewall just to initiate a tunnel connection to enforce HTTPS transport. Based on the direction in which the connection is initiated, select the appropriate method to configure the firewall from Firewall Using Direct Connections.


  1. From the CommCell Browser, expand Client Computers, right-click the client_name, and then click Properties.
  2. Click Advanced. The Advanced Client Properties dialog box opens.
  3. Click the Firewall Configuration tab, then click the Options tab.
  4. Select Force SSL authentication in incoming tunnel connections.
  5. Click OK to close the Advanced Properties dialog.
  6. Click OK to close the Client Properties dialog.