Configuring Infrastructure Data Collector for SSL
This section describes how to manually enable the Tomcat SSL connector which secures Infrastructure Data Collector for SSL. Note that to secure an entire system, you must also secure all other Optimize components as well.
To manually enable the Tomcat SSL Connector
1. Open Software AG_directory/profiles/InfraDC/configuration/config.ini file and add the following property:
org.eclipse.equinox.http.tomcat.https.port=<port>
2. Append the property to the "com.softwareag.platform.port.properties.list" property as shown:
com.softwareag.platform.port.properties.list=org.eclipse.equinox.http.tomc
at.http.port,com.softwareag.platform.startup.jmx.rmi.agent.port,org.eclipse.
equinox.http.tomcat.https.port
3. Open Software AG_directory /profiles/InfraDC/configuration/tomcat/conf/server.xml file, and add the following <Connector>:
<Connector description="Default CTP HTTPS Connector"
port="${org.eclipse.equinox.http.tomcat.https.port}"
maxHttpHeaderSize="8192" maxThreads="150" minSpareThreads="25"
maxSpareThreads="75" enableLookups="false" disableUploadTimeout="true"
acceptCount="100" scheme="https" secure="true" SSLEnabled="true"
keystoreFile="<path to keystore>" keystoreType="JKS" keystorePass="<keystore
password>" clientAuth="false" sslProtocol="TLS" algorithm="SunX509" />
Make sure to type the KeyStore file and password as specified in the Tomcat documentation. Refer to the Tomcat documentation (available from the Tamino website for more information.)
4. Open Software AG_directory /profiles/InfraDC/workspace/wsstack/repository/conf/axis2.xml file and find the place where <transportRecevier> commands are configured (there should be just one transport receiver for HTTP). Add the HTTPS transport receiver as shown in the following example:
<transportReceiver name="http"
class="org.apache.axis2.osgi.tx.HttpListener"> <parameter
name="portProperty">org.eclipse.equinox.
http.tomcat.http.port</parameter></transportReceiver><transportReceiver
name="https" class="org.apache.axis2.osgi.tx.HttpsListener"> <parameter
name="portProperty">org.eclipse.equinox.
http.tomcat.https.port</parameter></transportReceiver>
5. Save the file and close it.