Submit a ticketCall us

whitepaperYour VM Perplexities Called, and They Need You to Read This.

Virtualization can give you enormous flexibility with future workloads and can be a key enabler for other areas, like cloud computing and disaster recovery. So, how can you get a handle on the performance challenges in your virtual environment and manage deployments without erasing the potential upside? Learn the four key areas you need to be focusing on to help deliver a healthy and well-performing data center.

Get your free white paper.

Home > Success Center > Storage Manager (STM) > STM - Knowledgebase Articles > Set up SSL on Storage Manager with port redirection from port 80

Set up SSL on Storage Manager with port redirection from port 80

Table of contents
Created by Milton Harris, last modified by Karen Valdellon_ret on Jun 20, 2017

Views: 111 Votes: 2 Revisions: 3

Updated June 20, 2017

Overview

This article describes how to set up SSL on the Storage Manager Web Console using port redirection from port 80.
When enabled, users can access the Web Console on port 80, and HTTPS is used automatically.

Environment

All STM versions

Steps

  1. Use the key generator tool to create a self-signed certificate. Log in as an administrator and from a command prompt, run the following command:
    C:\Program Files\SolarWinds\Storage Manager Server\jre\bin>keytool -genkey -alias tomcat -keyalg RSA
  2. When prompted, enter your details and a password for the keystore. Remember this keystore password. 
    The certificate file is called: .keystore and is created in the home directory of the user that created the file. The home directory is generally C:\Users\<login>. </login>If the administrator is logged in and is generating the keystore, then it is in C:\Users\Administrator.
  3. Save the .keystore file to a location outside of the Storage Manager installation directory.
    For example: C:\STM_Certificate.
  4. Edit the following server.xml file:
    C:\Program Files\SolarWinds\Storage Manager Server\conf\server.xml
  5. Place HTML comment tags around the default HTTP connector port section:
    <!-- <connector maxhttpheadersize="8192" port="9000"/>
    <Connector port="9000" maxHttpHeaderSize="8192"<connector maxhttpheadersize="8192" port="9000">
    maxThreads="150" minSpareThreads="25" maxSpareThreads="75"
    enableLookups="false" redirectPort="8443" acceptCount="100" 
    connectionTimeout="20000" disableUploadTimeout="true" /> 
    --></connector>
  6. Enter the following HTTP and HTTPS connectors:
    <Connector port="80" protocol="HTTP/1.1" URIEncoding="UTF-8"
    disableUploadTimeout="true" connectionTimeout="20000"
    acceptCount="100" redirectPort="443" enableLookups="false"
    maxSpareThreads="75" minSpareThreads="25"
    maxThreads="150" maxHttpHeaderSize="8192"/>
                    
    <Connector port="443" protocol="org.apache.coyote.http11.Http11NioProtocol"
    URIEncoding="UTF-8" disableUploadTimeout="true" connectionTimeout="20000" acceptCount="100"
    redirectPort="443" enableLookups="false" maxSpareThreads="75" minSpareThreads="25"
    keystoreFile="C:\STM_Certificate\.keystore" keystorePass="solarwinds"
    SSLEnabled="true" maxThreads="150"
    scheme="https" secure="true" clientAuth="false" sslProtocol="TLS" maxHttpHeaderSize="8192"/>
  7. You can modify the port numbers to whatever ports you wish to use for HTTP and HTTPS communications.
    • In the HTTPS connector, the 'keystoreFile=' points to the location of the keystore file.
    • In the HTTPS connector, the 'keystorePass=' contains the password for the keystore file.
    • If you update the HTTPS port, make sure you also update 'redirectPort= ' in the HTTP and HTTPS connectors.
  8. Save the server.xml file.
  9. Edit the web.xml file:
    C:\Program Files\SolarWinds\Storage Manager Server\conf\web.xml
  10. Add the following to the file just before the closing </web-app> tag.
    <security-constraint>
    <web-resource-collection>
    <url-pattern>/*</url-pattern>
    <http-method>GET</http-method>
    <http-method>POST</http-method>
    </web-resource-collection>
    <user-data-constraint>
    <transport-guarantee>CONFIDENTIAL</transport-guarantee>
    </user-data-constraint>
    </security-constraint>
  11. Save the web.xml file.
  12. Restart the SolarWinds Storage Manager Web Services service.

 

 

Last modified

Tags

Classifications

Public