Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 1 reply
  • Subscribers 0 subscribers
  • Views 6182 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

iView port 8000, no SSL

teched_01
iView documentation (Administration and Quick Start Guides) suggests using https://iview-ip:8000/ to access iView. On my iviewtest VM port 8000 is plain HTTP. 

iviewtest:/root # version



Current software version...: 1.001004

Hardware type..............: Software Appliance

Installation image.........: 1.000-11.1

Installation type..........: iview

Installed pattern version..: 75672

Downloaded pattern version.: 75672

Up2Dates applied...........: 1 (see below)

                             sys-1.000-1.001-11.4.1.tgz (Feb 17 20:24)

Up2Dates available.........: 0

Factory resets.............: 0

Timewarps detected.........: 2


Observed both pre and post update.


This thread was automatically locked due to age.
  • 0
    I have been able to configure iView to use HTTPS.

    From my investigations iView runs within a tomcat container, however the default server.xml only has a http connector configured.

    To work around this I completed the following after connecting to the server with root access via the shell:

    1. Exported ssl certificate to a PCKS12 file 
    2. Copied PCKS12 file to /usr/local/ssl
    3. Updated /usr/local/iview/tomcat/conf/server.xml-default to add the following to the tomcat connector:
    scheme="https" secure="true" SSLEnabled="true" keystoreFile="/usr/local/ssl/gbsrv2933-1.pfx" keystorePass="changeit" keystoreType="PKCS12" clientAuth="false" sslProtocol="TLS"/>
    4. Connected to WebUI and changed the iView Port from 8000 to 8433
    5. Verified that the new config imported the changed (/usr/local/iview/tomcat/conf/server.xml)

    This really should not be necessary to manually edit the tomcat configuration to enable a feature that is documented as being enabled by default.

    Edit: Just noticed that this has stopped the link to the portal from opening as it is trying to open http.

    But easy enough to add an s on a url to have a secure connection.
Unfiltered HTML