Configuring BMC Defender Apache TLS adapter

The BMC Defender Apache TLS adapter package provides an HTTPS-enabled Apache server. The package creates a default self-signed server SSL certificate that secures access to the BMC Defender Server browser interface.

Configuring-Agent-Crypto describes a customized encryption system that is implemented for internal inter-process communication within BMC Defender. By contrast, the use of SSL and TLS for HTTP is highly defined, standards-based, and universally accepted. An abundance of public information exists on the Apache server and its secure configuration.

The Apache server is an especially hardened version of Apache, with most of its optional modules removed, and configured specifically to support BMC Defender. This section describes the actions that you can perform to configure the Apache TLS server to further strengthen the server or provide special access depending on the requirements of your enterprise. 

Note

This section deals strictly with the Apache TLS encryption for secure communications between BMC Defender Server and the user browsers. For information about message encryption, which secures the communication between BMC Defender Server and its agents, see Configuring-Agent-Crypto.

This section contains the following topics:

 

Tip: For faster searching, add an asterisk to the end of your partial query. Example: cert*