×
 
 
  •  
$helper.renderConfluenceMacro('{bmc-global-announcement:$space.key}')

Unsupported content

 

This version of the documentation is no longer supported. However, the documentation is available for your convenience. You will not be able to leave comments.
BMC Decision Support for Server Automation 8.9 Administering

Modifying the Apache Tomcat protocol

During installation, you choose the protocol (HTTP or HTTPS) that you want to use to access the BMC Decision Support for Server Automation Console. You can change this protocol after installation by modifying the server.xml and web.xml files. This topic describes how to change the protocol after installation.

Note

The instructions provided are applicable for both Microsoft Windows and UNIX. The notations used in instructions are applicable for UNIX systems. Change the notations for Windows systems.

Before you begin

Before you change the protocol, on the reports server, navigate to the $BDS_HOME/tomcat/conf directory and back up the following files:

  • server.xml
  • web.xml

In the following procedures, you can change HTTP and HTTPS port numbers as required. Ensure that the ports you enter are available for use.

To change the protocol from HTTP to HTTPS

  1. Log out of the BMC Decision Support for Server Automation Console.
  2. Log on to the reports server. 
  3. Stop the Tomcat service.
  4. Navigate to the $BDS_HOME/tomcat/conf directory and open the server.xml file with a text editor.

  5. Search the file for a section similar to the following that contains the Connector tag and the following string: %%BDS WEBSERVER REDIRECT TO HTTPS IS FALSE%%.

    <!-- %%BDS WEBSERVER REDIRECT TO HTTPS IS FALSE%% -->   
    <Connector port="9080" protocol="HTTP/1.1" 
               connectionTimeout="20000" />
<!--  %%BDS WEBSERVER REDIRECT TO HTTPS IS FALSE%% -->

    • If you find the section that contains the tag and the string, remove --> from the first line and <!-- from the last line of the section so that the entire section is commented.

    • If you find the section that contains the tag and not the string, perform the following steps:

      1. Insert the following string in the beginning of the section: <!-- %%BDS WEBSERVER REDIRECT TO HTTPS IS FALSE%%

      2. Insert the following string in the end of the section: %%BDS WEBSERVER REDIRECT TO HTTPS IS FALSE%% -->.

    After modification, this section might look like the following:

    <!-- %%BDS WEBSERVER REDIRECT TO HTTPS IS FALSE%%    
    <Connector port="9080" protocol="HTTP/1.1" 
               connectionTimeout="20000" />
    %%BDS WEBSERVER REDIRECT TO HTTPS IS FALSE%% -->

  6. Search the file for a section similar to the following that contains the Connector tag, redirectPort attribute, and the following string: %%BDS WEBSERVER REDIRECT TO HTTPS IS TRUE%%.

    <!-- %%BDS WEBSERVER REDIRECT TO HTTPS IS TRUE%%    
    <Connector port="9080" protocol="HTTP/1.1" 
               connectionTimeout="20000" 
               redirectPort="" />
 %%BDS WEBSERVER REDIRECT TO HTTPS IS TRUE%% -->
    • If you find the section that contains the tag, attribute, and string, add comments to the first and last line of the section (add --> to the first line and <!-- to the last line).
    • If you find the section that contains the tag and attribute, and not the string, perform the following steps:
      1. Remove comments from the section (remove <!-- and --> tags).
      2. Insert the following string in the beginning and end of the section: <!-- %%BDS WEBSERVER REDIRECT TO HTTPS IS TRUE%% -->.

    After modification, this section might look like the following:

    <!-- %%BDS WEBSERVER REDIRECT TO HTTPS IS TRUE%% -->   
    <Connector port="9080" protocol="HTTP/1.1" 
               connectionTimeout="20000" 
               redirectPort="" />
<!-- %%BDS WEBSERVER REDIRECT TO HTTPS IS TRUE%% -->

  7. If the value of the redirectPort attribute is not present, enter it, or if the value is present, change the value if you want to. This attribute represents the port on which you want the BMC Decision Support for Server Automation Console to listen to the HTTPS requests.
    After modification, this section might look like the following:

    <!-- %%BDS WEBSERVER REDIRECT TO HTTPS IS TRUE%%  -->
    <Connector port="9080" protocol="HTTP/1.1" 
               connectionTimeout="20000" 
               redirectPort="9443" />
<!--  %%BDS WEBSERVER REDIRECT TO HTTPS IS TRUE%% -->

  8. Search the file for a section similar to the following that contains the Connector tag, the SSLEnabled attribute, and the following string: %%BDS WEBSERVER REDIRECT TO HTTPS IS TRUE%%.

    <!-- %%BDS WEBSERVER REDIRECT TO HTTPS IS TRUE%%    
<Connector port="" 
           SSLEnabled="true"
           protocol="org.apache.coyote.http11.Http11NioProtocol"
           maxHttpHeaderSize="8192"
           maxThreads="150" 
           minSpareThreads="25" 
           maxSpareThreads="75"   
           enableLookups="false" 
           disableUploadTimeout="true"     
           acceptCount="100" 
           scheme="https" 
           secure="true"
           keystoreFile="C:\PROGRA~1\BMCSOF~1\BDSSA/tomcat/conf/bdsSslCertificate.cert"
           keystorePass="1emprisa"
           clientAuth="false" 
           sslProtocol="TLS" /> 
 %%BDS WEBSERVER REDIRECT TO HTTPS IS TRUE%% -->
    • If you find the section that contains the tag, attribute, and string, add comments to the first and last line of the section (add --> to the first line and add <!-- to the last line).
    • If you find the section that contains the tag and attribute, and not the string, perform the following steps:
      1. Remove comments from the section (remove <!-- and --> tags).
      2. Add the following string in the beginning and end of the section: <!-- %%BDS WEBSERVER REDIRECT TO HTTPS IS TRUE%% -->.

    After modification, this section might look like the following:

    <!-- %%BDS WEBSERVER REDIRECT TO HTTPS IS TRUE%% -->   
<Connector port="" 
           SSLEnabled="true"
           protocol="org.apache.coyote.http11.Http11NioProtocol"
           maxHttpHeaderSize="8192"
           maxThreads="150" 
           minSpareThreads="25" 
           maxSpareThreads="75"   
           enableLookups="false" 
           disableUploadTimeout="true"     
           acceptCount="100" 
           scheme="https" 
           secure="true"
           keystoreFile="C:\PROGRA~1\BMCSOF~1\BDSSA/tomcat/conf/bdsSslCertificate.cert"
           keystorePass="1emprisa"
           clientAuth="false" 
           sslProtocol="TLS" /> 
<!-- %%BDS WEBSERVER REDIRECT TO HTTPS IS TRUE%% -->

  9. If the value of the port attribute is not present, enter it, or if the value is present, change it if you want to.
    This port represents the port on which you want the BMC Decision Support for Server Automation Console to listen to the HTTPS requests. This value must be the same as you provided for the redirectPort attribute in step 5. After modification, this section might look like the following:

    <!-- %%BDS WEBSERVER REDIRECT TO HTTPS IS TRUE%%  -->
<Connector port="9443" 
           SSLEnabled="true"
           protocol="org.apache.coyote.http11.Http11NioProtocol"
           maxHttpHeaderSize="8192"
           maxThreads="150" 
           minSpareThreads="25" 
           maxSpareThreads="75"   
           enableLookups="false" 
           disableUploadTimeout="true"     
           acceptCount="100" 
           scheme="https" 
           secure="true"
           keystoreFile="C:\PROGRA~1\BMCSOF~1\BDSSA/tomcat/conf/bdsSslCertificate.cert"
           keystorePass="1emprisa"
           clientAuth="false" 
           sslProtocol="TLS" /> 
<!-- %%BDS WEBSERVER REDIRECT TO HTTPS IS TRUE%%  -->
  10. Save and close the file.
  11. Navigate to the $BDS_HOME/tomcat/conf directory and open the web.xml file with a text editor.

  12. Search the file for a section similar to the following that contains the security-constraint tag and the following string: %%BDS WEBSERVER REDIRECT TO HTTPS IS TRUE%%.

    <!-- %%BDS WEBSERVER REDIRECT TO HTTPS IS TRUE%%  
<security-constraint> 
      <web-resource-collection> 
            <web-resource-name>Entire Application</web-resource-name>
        <url-pattern>/*</url-pattern> 
    </web-resource-collection> 
    <user-data-constraint><transport-guarantee>CONFIDENTIAL</transport-guarantee> </user-data-constraint> 
</security-constraint>
%%BDS WEBSERVER REDIRECT TO HTTPS IS TRUE%% -->

    • If you find the section that the tag and string, add --> to the first line and <!-- to the last line.

    • If you find the section that contains the tag and not the string, perform the following steps:

      1. Remove comments from the section (remove <!-- and --> tags).

      2. Insert the following string in the beginning and end of the section: <!-- %%BDS WEBSERVER REDIRECT TO HTTPS IS TRUE%% -->.

    After modification, this section might look like the following:

    <!-- %%BDS WEBSERVER REDIRECT TO HTTPS IS TRUE%% -->
<security-constraint> 
      <web-resource-collection> 
            <web-resource-name>Entire Application</web-resource-name>
        <url-pattern>/*</url-pattern> 
    </web-resource-collection> 
    <user-data-constraint><transport-guarantee>CONFIDENTIAL</transport-guarantee> </user-data-constraint> 
</security-constraint> 
<!-- %%BDS WEBSERVER REDIRECT TO HTTPS IS TRUE%% -->
  13. Save and close the file.
  14. Start the Tomcat service.

To change the protocol from HTTPS to HTTP

  1. Log out of the BMC Decision Support for Server Automation Console.
  2. Log on to the reports server.
  3. Stop the Tomcat service.
  4. Navigate to the $BDS_HOME/tomcat/conf directory and open the server.xml file with a text editor.

  5. Search the file for a section similar to the following that contains the Connector tag and the following string: %%BDS WEBSERVER REDIRECT TO HTTPS IS FALSE%%

    <!-- %%BDS WEBSERVER REDIRECT TO HTTPS IS FALSE%%    
    <Connector port="9080" protocol="HTTP/1.1" 
               connectionTimeout="20000" />
    %%BDS WEBSERVER REDIRECT TO HTTPS IS FALSE%% -->

    • If you find the section that contains the tag and string, add --> to the first line and <!-- to the last line.

    • If you find the section that contains the tag and not the string, perform the following steps:

      1. Remove comments from the section (remove <!-- and --> tags).

      2. Insert the following string in the beginning and end of the section: <-- %%BDS WEBSERVER REDIRECT TO HTTPS IS FALSE%% -->.

    After modification, this section might look like the following:

    <!-- %%BDS WEBSERVER REDIRECT TO HTTPS IS FALSE%% -->   
    <Connector port="9080" protocol="HTTP/1.1" 
               connectionTimeout="20000" />
<!-- %%BDS WEBSERVER REDIRECT TO HTTPS IS FALSE%% -->

  6. If the value of the port attribute is empty, enter it, or if the value is present, change it if you want to. This attribute represents the port on which you want the BMC Decision Support for Server Automation Console to listen to the HTTP requests.
    After modification, this section might look like the following:

    <!-- %%BDS WEBSERVER REDIRECT TO HTTPS IS FALSE%% -->   
    <Connector port="9080" protocol="HTTP/1.1" 
               connectionTimeout="20000" />
<!-- %%BDS WEBSERVER REDIRECT TO HTTPS IS FALSE%% -->


  7. Search the file for a section similar to the following that contains the Connector tag, redirectPort attribute, and the following string: %%BDS WEBSERVER REDIRECT TO HTTPS IS TRUE%%. 

    <!-- %%BDS WEBSERVER REDIRECT TO HTTPS IS TRUE%% -->
<Connector port="9080" protocol="HTTP/1.1" 
               connectionTimeout="20000" 
               redirectPort="9443" />
<!-- %%BDS WEBSERVER REDIRECT TO HTTPS IS TRUE%% -->

    • If you find the section that contains the tag, attribute, and string, remove --> from the first line and <!-- from the last line of the section so that the entire section is commented.

    • If you find the section that contains the tag and attribute, and not the string, perform the following steps:

      1. Insert the following string in the beginning of the section: <!-- %%BDS WEBSERVER REDIRECT TO HTTPS IS TRUE%%.

      2. Insert the following string in the end of the section: %%BDS WEBSERVER REDIRECT TO HTTPS IS TRUE%% -->.

    After modification, this section might look like the following:

    <!-- %%BDS WEBSERVER REDIRECT TO HTTPS IS TRUE%%
<Connector port="9080" protocol="HTTP/1.1" 
               connectionTimeout="20000" 
               redirectPort="9443" />
%%BDS WEBSERVER REDIRECT TO HTTPS IS TRUE%% -->

  8. Search the file for a section similar to the following that contains the Connector tag, SSLEnabled attribute, and the following string: %%BDS WEBSERVER REDIRECT TO HTTPS IS TRUE%%.

    <!-- %%BDS WEBSERVER REDIRECT TO HTTPS IS TRUE%% -->
<Connector port="9443" 
           SSLEnabled="true"
           protocol="org.apache.coyote.http11.Http11NioProtocol"
           maxHttpHeaderSize="8192"
           maxThreads="150" 
           minSpareThreads="25" 
           maxSpareThreads="75"   
           enableLookups="false" 
           disableUploadTimeout="true"     
           acceptCount="100" 
           scheme="https" 
           secure="true"
           keystoreFile="C:\PROGRA~1\BMCSOF~1\BDSSA/tomcat/conf/bdsSslCertificate.cert"
           keystorePass="1emprisa"
           clientAuth="false" 
           sslProtocol="TLS" /> 
<!-- %%BDS WEBSERVER REDIRECT TO HTTPS IS TRUE%% -->

    • If you find the section contains the tag, attribute, and string, remove --> from the first line and <!-- from the last line of the section.

    • If you find the section that contains the tag and attribute, and not the string, perform the following steps:

      1. Insert the following line in the beginning of the section: <!-- %%BDS WEBSERVER REDIRECT TO HTTPS IS TRUE%%.

      2. Insert the following line in the end of the section: %%BDS WEBSERVER REDIRECT TO HTTPS IS TRUE%% -->.

    After modification, this section might look like the following:

    <!-- %%BDS WEBSERVER REDIRECT TO HTTPS IS TRUE%% 
<Connector port="9443" 
           SSLEnabled="true"
           protocol="org.apache.coyote.http11.Http11NioProtocol"
           maxHttpHeaderSize="8192"
           maxThreads="150" 
           minSpareThreads="25" 
           maxSpareThreads="75"   
           enableLookups="false" 
           disableUploadTimeout="true"     
           acceptCount="100" 
           scheme="https" 
           secure="true"
           keystoreFile="C:\PROGRA~1\BMCSOF~1\BDSSA/tomcat/conf/bdsSslCertificate.cert"
           keystorePass="1emprisa"
           clientAuth="false" 
           sslProtocol="TLS" /> 
 %%BDS WEBSERVER REDIRECT TO HTTPS IS TRUE%% -->
  9. Save and close the file.
  10. Navigate to $BDS_HOME/tomcat/conf directory and open the web.xml file with a text editor.

  11. Search the file for a section similar to the following that contains the security-constraint tag, and the following string: %%BDS WEBSERVER REDIRECT TO HTTPS IS TRUE%%.

    <!-- %%BDS WEBSERVER REDIRECT TO HTTPS IS TRUE%% -->
<security-constraint> 
      <web-resource-collection> 
            <web-resource-name>Entire Application</web-resource-name>
        <url-pattern>/*</url-pattern> 
    </web-resource-collection> 
    <user-data-constraint><transport-guarantee>CONFIDENTIAL</transport-guarantee> </user-data-constraint> 
</security-constraint> 
<!-- %%BDS WEBSERVER REDIRECT TO HTTPS IS TRUE%% -->

    • If you find the section that contains the tag and string, remove --> from the first line and <!-- from the last line of the section.

    • If you find the section that contains the tag and not the string, perform the following steps:

      1. Insert the following line in the beginning of the section: <!-- %%BDS WEBSERVER REDIRECT TO HTTPS IS TRUE%%.

      2. Insert the following line in the end of the section: %%BDS WEBSERVER REDIRECT TO HTTPS IS TRUE%% -->.

    After modification, this section might look like the following:

    <!-- %%BDS WEBSERVER REDIRECT TO HTTPS IS TRUE%%
<security-constraint> 
      <web-resource-collection> 
            <web-resource-name>Entire Application</web-resource-name>
        <url-pattern>/*</url-pattern> 
    </web-resource-collection> 
    <user-data-constraint><transport-guarantee>CONFIDENTIAL</transport-guarantee> </user-data-constraint> 
</security-constraint> 
%%BDS WEBSERVER REDIRECT TO HTTPS IS TRUE%% -->
  12. Save and close the file.
  13. Start the Tomcat service.

This version of the documentation is no longer supported. However, the documentation is available for your convenience. You will not be able to leave comments.

Last modified by Sulekha Gulati on Jan 29, 2015
http https apache_tomcat_protocol task

Comments

Log in or register to comment.

Modify Web Server Details page
Managing the reports server
© Copyright 2013 - 2017 BMC Software, Inc.
Legal notices

Powered by Atlassian Confluence and Scroll Viewport

© Copyright 2005-2024 BMC Software, Inc. Use of this site signifies your acceptance of BMC’s Terms of Use . BMC, the BMC logo, and other BMC marks are assets of BMC Software, Inc. These trademarks are registered and may be registered in the U.S. and in other countries.