Configuring the Presentation Server for non-secure (HTTP) mode



By default, the TrueSight Presentation Server uses the secure mode (HTTPS) mode for access.

Note

The TrueOps mobile app requires the HTTPS mode for access. If you configure the TrueSight Presentation Server for HTTP mode, you cannot use the TrueOps mobile app.

To configure the TrueSight Presentation Server for non-secure (HTTP) mode, perform the following steps:


  1. In a text editor, edit the <Presentation Server installation directory>\truesightpserver\modules\tomcat\conf\web.xml file.
    1. Comment out the security-constraint section so that it reads as follows:

      <!--
      <security-constraint>
              <web-resource-collection>
                  <web-resource-name>Secure context</web-resource-name>
                  <url-pattern>/*</url-pattern>
                  </web-resource-collection>
                  
                  <user-data-constraint>
                  <transport-guarantee>CONFIDENTIAL</transport-guarantee>
                  </user-data-constraint>
          </security-constraint>
      -->
  2. In a text editor, edit the <Presentation Server installation directory>\truesightpserver\modules\tomcat\conf\server.xml file.
    1. Modify the following line:

      <Connector connectionTimeout="20000" enableLookups="false" port="80" protocol="HTTP/1.1" redirectPort="443"/>

      Then, remove the redirectPort information and copy the compressableMimeType, compression, and compressionMinSize property information from the HTTPS connector so that it reads as follows:

      <Connector connectionTimeout="20000" enableLookups="false" port="80" protocol="HTTP/1.1"compressableMimeType="text/html,text/xml,text/plain,text/css,text/javascript,application/javascript,application/json" compression="on" compressionMinSize="1024" />

      Note

      The default port for Windows is 80 and Linux is 8080. If you specified a custom port during installation, enter that port number instead.

    2. Comment out the following line so that it reads as follows:

      <!-- <Connector SSLEnabled="true" ciphers="TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256,TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256,
      TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384,TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384,TLS_DHE_RSA_WITH_AES_128_GCM_SHA256,
      TLS_DHE_DSS_WITH_AES_128_GCM_SHA256,TLS_ECDHE_RSA_WITH_AES_128_SHA256,TLS_ECDHE_ECDSA_WITH_AES_128_SHA256,
      TLS_ECDHE_RSA_WITH_AES_128_SHA,TLS_ECDHE_ECDSA_WITH_AES_128_SHA,TLS_ECDHE_RSA_WITH_AES_256_SHA384,
      TLS_ECDHE_ECDSA_WITH_AES_256_SHA384,TLS_ECDHE_RSA_WITH_AES_256_SHA,TLS_ECDHE_ECDSA_WITH_AES_256_SHA,
      TLS_DHE_RSA_WITH_AES_128_SHA256,TLS_DHE_RSA_WITH_AES_128_SHA,TLS_DHE_DSS_WITH_AES_128_SHA256,
      TLS_DHE_RSA_WITH_AES_256_SHA256,TLS_DHE_DSS_WITH_AES_256_SHA,TLS_DHE_RSA_WITH_AES_256_SHA" 
      clientAuth="false" compressableMimeType="text/html,text/xml,text/plain,text/css,text/javascript,application/javascript,application/json" compression="on" compressionMinSize="1024" keystoreFile="C:/Program Files/BMC Software/TrueSightPServer/truesightpserver/conf/secure/loginvault.ks" keystorePass="changeit" maxThreads="150" port="4435" protocol="org.apache.coyote.http11.Http11NioProtocol" scheme="https" secure="true" sslProtocol="TLSv1.2" useServerCipherSuitesOrder="true"/> 
      -->

       

  3. From the <Presentation Server installation directory>\truesightpserver\truesightpserver\bin folder, use a command prompt to run the following command:

    tssh properties set tspsPreferredWebServiceProtocol http

     

  4. If you want to use the TrueSight console to deploy and install packages on a PATROL Agent, from the <Presentation Server installation directory>\truesightpserver\truesightpserver\bin folder, use a command prompt to run the following command:

    tssh properties set server.port.websrv.protocol http
  5. Restart the TrueSight Presentation Server. 
  1. On each Infrastructure Management server connected to the TrueSight Presentation Server, add the following property to the <Infrastructure Management installation directory>\pw\custom\conf\pronet.conf file:
    tsps.tsim.http.enabled=true
  2. Restart each Infrastructure Management server that you changed.

 

Tip: For faster searching, add an asterisk to the end of your partial query. Example: cert*