Securing Faspex Firewall Settings Configuring Security Settings Securing Incoming and Outgoing Transfers Verify Private and Public Key Authentication for SSH Server Disabling SELinux SELinux (Security-Enhanced Linux), an access-control implementation, can prevent web UI access. Securing Admin Login Attempts from Unknown IP Addresses Enabling Terms of Service Agreement Installing a Signed SSL Certificate Provided by Authorities In a default IBM Aspera Faspex installation, Apache generates and uses a self-signed SSL certificate. Install a signed certificate provided by authorities to secure your server. Generating and Installing a New Self-Signed SSL Certificate Generate a self-signed certificate if you don't plan on sending your certificate to be signed by a Certified Authority (CA), or if you want to test your SSL implementation while waiting for the CA to sign your certificate. Regenerating Self-Signed SSL Certificate (Apache) File Encryption Options Use Faspex and IBM Aspera High-Speed Transfer Server together to encrypt files before they are transferred, encrypt files at the destination, and encrypt data transferred over the network.