Unsupported content This version of the documentation is no longer supported. However, the documentation is available for your convenience. You will not be able to leave comments.

Configuring the BMC Remedy Mid Tier

If you have installed the BMC Remedy Mid Tier (mid tier) on a different host than enterprise AR System – Primary, perform the steps in this topic.

To configure the mid tier

  1. From the Services window, stop and then restart the Tomcat service.
  2. Navigate to the CloudBackPluginsubdirectory and delete the contents of the folder.
    • On Microsoft Windows, go to C:\Program Files\BMC Software\ARSystem\midtier\PluginsCache\<ARSystemHostName>\CloudCallBackPlugin
    • On Linux, go to opt/ BMC Software/ ARSystem/midtier/PluginCacheARHOSTName/CloudCallBackPlugin/hostname/CloudBackPlugin
  3. Log on to the BMC Remedy Mid Tier Configuration Tool by using the following link:
    https:// midTierHost:portNumber/arsys/shared/config/config.jsp
  4. In the left navigation pane, click Cache Settings.
  5. Click Flush Cache.
  6. Stop and restart the Tomcat service
  1. Log on to the Mid Tier Configuration Tool, using the following link:
    https:// <midTierHost:portNumber>/arsys/shared/config/config.jsp
  2. Go to General Setting and from drop-down option select the Load Balancer host name.
  3. Specify the load balancer name in the Preference Server and Data Visualization Server name fields.
  4. Click Flush Cache.

  5. Restart the Tomcat service

    1. On Microsoft Windows:  restart the Apache Tomcat service
    2. On Linux: stop and start the Tomcat service using following commands:
    • /opt/apache/tomcat6.0/bin/shutdown.sh
    • /opt/apache/tomcat6.0/bin/startup.sh

FOR SSL CONFIGURATION PLEASE FIND FOLLOWING STEPS

1)      Find JAVA location from configure tomcat on windows

on linux 

Open /opt/apache/tomcat6.0/bin/startup.sh file to verify JAVA_HOME location

Example:

JAVA_HOME=/usr/java/jdk1.6.0_20/jre/ ; export JAVA_HOME

2)      On Midter box do following steps,

a)      Generating Keystore for SSL

on windows :

$JAVA_HOME$\bin>keytool.exe -genkey -alias Tomcat -keyalg RSA 

-storepass changeit -keypass changeit -dname "cn=LBhostname"

on Linux -

./JAVA_HOME/bin/keytool -genkey -alias Tomcat -keyalg RSA

-storepass changeit -keypass changeit -dname "cn=Host IP Address"

Example –

[root@vl-pun-cdl-qa59 bin]#./keytool -genkey -alias Tomcat -keyalg RSA -storepass changeit -keypass changeit -dname "cn=10.128.253.177"

b)      Check keystore list

on windows :-

C:\Program Files (x86)\Java\jre1.5.0_14\bin>keytool.exe --list

on linux -

./JAVA_HOME/bin/keytool --list

Note- password :changeit

Example –

[root@vl-pun-cdl-qa59 bin]# ./keytool -list

Enter keystore password:

Keystore type: JKS

Keystore provider: SUN

Your keystore contains 1 entry

tomcat, Oct 3, 2012, PrivateKeyEntry,

Certificate fingerprint (MD5): 46:BD:B8:98:95:E2:F8:75:DD:14:C7:73:6A:83:FB:AF

[root@vl-pun-cdl-qa59 bin]#

c)      Exporting the Certificate (If required)

on Windows -

$JAVA_HOME$\bin >keytool -export -storepass changeit

-keypass changeit -alias Tomcat -file c:\Tomcat.cer

on Linux -

./JAVA_HOME/bin/keytool  -export storepass changeit -keypass changeit -alias Tomcat

 -file /opt/tomcat.cer

Example -

[root@vl-pun-cdl-qa59 bin]# ./keytool -export -storepass changeit -keypass changeit -alias Tomcat -file /opt/tomcat.cer

Certificate stored in file </opt/tomcat.cer>

d)      Open the server.xml file of Tomcat (Take backup first)

e)      Search for the following text in the file: -

<!-- Define a SSL HTTP/1.1 Connector on port 8443

         This connector uses the JSSE configuration, when using APR, the

         connector should be using the OpenSSL style configuration

         described in the APR documentation -->

    <!--

    <Connector port="8443" protocol="HTTP/1.1" SSLEnabled="true"

               maxThreads="150" scheme="https" secure="true"

               clientAuth="false" sslProtocol="TLS" />    -->

f)       Uncomment the section <Connector port=8443".........> and change the port if required

g)      Save the file and Restart the Tomcat server

on Linux

Command to start Tomcat server

/opt/apache/tomcat6.0/bin/startup.sh

h)        Access the Midtier URL using the new https port

https://<Machine-Name>:<Https Port>/

 on Windows machine -

Make sure that exported certificate file and keystore both are at same location

Otherwise you will get following error in log file

Feb 15, 2011 7:08:07 AM org.apache.tomcat.util.net.jsse.JSSESocketFactory getStore

SEVERE: Failed to load keystore type JKS with path C:\/.keystore due to C:\.keystore (The system cannot find the file specified)

java.io.FileNotFoundException: C:\.keystore (The system cannot find the file specified)

            at java.io.FileInputStream.open(Native Method)

 

Tip: For faster searching, add an asterisk to the end of your partial query. Example: cert*