How to change TIBCO BusinessWorks(TM) ProcessMonitor access URL from HTTP to HTTPs
Article ID: KB0072204
Updated On:
| Products | Versions |
|---|---|
| TIBCO BusinessWorks ProcessMonitor | 3.2.0 |
Description
In order to provide security to access TIBCO BusinessWorks(TM) ProcessMonitor,The access protocol can be changed from HTTP to HTTPs and changes need to be done at tomcat configuration.After making changes TIBCO BusinessWorks(TM) ProcessMonitor server deployed on tomcat can be accessed on port 8443.
Resolution
Follow below steps for running tomcat application on HTTPS.
Steps:
*******
1. Open the command prompt and navigate to the JDK Installation folder.
2. Run the following command to create a keystore file to store the server's private key and self-signed certificate:
******
root@server:~/$JAVA_HOME/bin/keytool -genkey -alias tomcat -keyalg RSA -keystore /opt/apache-tomcat-7.0.55/.keystore
******
3. When prompted, specify the password string, for example, "bwpmserver". The password could be any string, the same password needs to be specified in the server.xml configuration file (see step 6).
4. When prompted, specify general information about the certificate, such as company, contact name, and so on. This information helps users to validate the authenticity of the certificate, as this information is displayed to users who attempt to access a secure page in your application.
The .keystore file with the Certificate is created in the same JDK installation folder or -keyalg RSA -keystore /opt/apache-tomcat-7.0.55/.keystore.
5. Now, browse to the configuration folder and open server.xml for editing.
6. Enter the following information under the Catalina service tag <Service name="Catalina">:
******
<Connector port="443" protocol="HTTP/1.1" SSLEnabled="true"
maxThreads="150" scheme="https" secure="true"
clientAuth="false" sslProtocol="TLS"
keystoreFile="/opt/apache-tomcat-7.0.55/.keystore"
keystorePass="password"/>
******
7. Add the following in the $CATALINA_HOME/webapps/BWPM/WEB-INF/web.xml in the <security-constraint> tag:
******
<user-data-constraint>
<transport-guarantee>CONFIDENTIAL</transport-guarantee>
</user-data-constraint>
******
This forces to switch from http to https, using a secure protocol.
8. Save the file and restart tomcat server.
To verify, type the URL "https://localhost:8443/BWPM/" in a web browser and press Enter. Web browser should display TIBCO BusinessWorks(TM) ProcessMonitor login page.
Steps:
*******
1. Open the command prompt and navigate to the JDK Installation folder.
2. Run the following command to create a keystore file to store the server's private key and self-signed certificate:
******
root@server:~/$JAVA_HOME/bin/keytool -genkey -alias tomcat -keyalg RSA -keystore /opt/apache-tomcat-7.0.55/.keystore
******
3. When prompted, specify the password string, for example, "bwpmserver". The password could be any string, the same password needs to be specified in the server.xml configuration file (see step 6).
4. When prompted, specify general information about the certificate, such as company, contact name, and so on. This information helps users to validate the authenticity of the certificate, as this information is displayed to users who attempt to access a secure page in your application.
The .keystore file with the Certificate is created in the same JDK installation folder or -keyalg RSA -keystore /opt/apache-tomcat-7.0.55/.keystore.
5. Now, browse to the configuration folder and open server.xml for editing.
6. Enter the following information under the Catalina service tag <Service name="Catalina">:
******
<Connector port="443" protocol="HTTP/1.1" SSLEnabled="true"
maxThreads="150" scheme="https" secure="true"
clientAuth="false" sslProtocol="TLS"
keystoreFile="/opt/apache-tomcat-7.0.55/.keystore"
keystorePass="password"/>
******
7. Add the following in the $CATALINA_HOME/webapps/BWPM/WEB-INF/web.xml in the <security-constraint> tag:
******
<user-data-constraint>
<transport-guarantee>CONFIDENTIAL</transport-guarantee>
</user-data-constraint>
******
This forces to switch from http to https, using a secure protocol.
8. Save the file and restart tomcat server.
To verify, type the URL "https://localhost:8443/BWPM/" in a web browser and press Enter. Web browser should display TIBCO BusinessWorks(TM) ProcessMonitor login page.
Issue/Introduction
How to change TIBCO BusinessWorks(TM) ProcessMonitor access URL from HTTP to HTTPs
Feedback
Yes
No
Powered by
