Configuring the EAM Advanced Reporting Server gateway to use SSL - HxGN EAM - Version 11.07.01 - Installation & Upgrade

HxGN EAM Installation Guide

Language
English
Product
HxGN EAM
Search by Category
Installation & Upgrade
HxGN EAM Version
11.7.1

Only the communication to and from the gateway machine uses HTTPS. In a distributed installation environment, all traffic among the gateways, report servers, and content managers uses HTTP. However, the content passed among these machines is encrypted.

The information in this section is based on the assumption that you are using port 80 as the non-SSL port, port 443 as the SSL port, and that both ports are available. Adjust the steps below if your configuration is different.

Make sure you have the signed server certificate and key files available. A valid certificate signed by a reputable certificate authority, such as VeriSign, must be used. A test certificate may be used to test the HTTPS connectivity on the report server, but reports will not run from HxGN EAM with a test certificate unless the certifying authority’s certificate is manually added to the jre's cacerts file on the HxGN EAM application server.

  1. Modify the InforEAMAdvRep/depconfig/advrep_properties.xml file to change the crn/servercfg/ports/ webserver/https/port setting to 443.

  2. Modify the InforEAMAdvRep/depconfig/advrep_properties.xml file to change the crn/servercfg/ports/ gatewayport setting to 8443.

    Do not change the crn/servercfg/ports/webserver/http/ssl setting from its default value of false. This setting is not supported and will cause the deploy to fail.

  3. Copy your certificate’s files to the appropriate InforEAMAdvRep/apache/conf/ssl.cert directory. Copy the .cer file to the ssl.crt directory and the .key file to the ssl.key directory.

  4. The .cer file needs to be reports.cer and reports.key. For the application certs, they should be named app.cer and app.key.

  5. Modify the InforEAMAdvRep/depconfig/templates/apache/httpd.conf.tmpl file to uncomment the following line:

    #LoadModule ssl_module modules/mod_ssl.so

  6. Stop the Apache and Application Services.

  7. Open a command prompt as Admin and go to InforEAMAdvRep/depconfig directory and run the command addssl.bat.

  8. Once complete, disable the HTTP Service.

  9. On the HxGN EAM application server, add the following entry in InforEAM/depconfig/properties/external/ config.yml:

    reports:
    advrep:
    protocol: https

  10. Run deploy on the HxGN EAM application server to complete the configuration.