CA Access Gateway (UNIX) will not listen on port 443

book

Article ID: 142701

calendar_today

Updated On:

Products

CA Single Sign On Secure Proxy Server (SiteMinder) SITEMINDER

Issue/Introduction

We've enabled SSL on CA Access Gateway of UNIX version, but the service only starts up on port 80. No errors in any of the Apache logs, Tomcat logs, or Agent logs.

Environment

Release : 12.8.03

Component : CA Access Gateway

Resolution

On Unix/Linux, use the option startssl to start CA Access Gateway with SSL enabled.

sps-ctl startssl

Here is a command line help.
# ./sps-ctl
usage:  ./sps-ctl (start|startssl|stop|restart|graceful)

start       - start CA Access Gateway Proxy and the CA Access Gateway Engine
startssl    - start CA Access Gateway Proxy with SSL enabled and the CA Access Gateway Engine
stop        - stop CA Access Gateway Proxy and the CA Access Gateway Engine
restart     - restart CA Access Gateway Proxy by sending a SIGHUP or start if not running

graceful    - do a graceful restart of CA Access Gateway Proxy by sending a SIGUSR1 or start if not running
help        - this screen

Additional Information

To confirm your configuration, check the techdoc.
Configuring SSL on Apache Web Server Manually

This explains following topics. (The command execution is in the step 7.)
1.Manage Certificates
2.Review the Considerations
3.Generate a Private Key
4.Generate and Submit a Certificate Signing Request
5.Download and Install the Certificates from the Certificate Authority
6.Generate a Self-signed Certificate
7.Enable SSL
8.Enable SSL for Virtual Hosts