search cancel

Disable HTTP communication for Embedded Entitlement Manager

book

Article ID: 213774

calendar_today

Updated On:

Products

CA Workload Automation AE - Scheduler (AutoSys)

Issue/Introduction

By default, the Embedded Entitlement Manager application allows communication through HTTP and HTTPS protocols. 

This document describes the procedure to disable communication via non-secure HTTP protocol -

Environment

Component: CA Embedded Entitlement Manager (EEM)

Release: 12.6

Resolution

Procedure to disable HTTP for EEM -

Navigate to the $IGW_HOME location (Default: /opt/CA/SharedComponents/iTechnology)

1) Stop igateway

2) Take a back up of file "igateway.conf"

3) Find the code-snippet in the file igateway.conf: 

<!-- DO NOT REMOVE THIS -->

<Connector name="defaultport">

<port>5250</port>

<mustlisten>true</mustlisten>

    <conntype/>

<conntimeout>120</conntimeout>

<peektimeout>30</peektimeout>

<maxconnections>1000</maxconnections>

<maxrequestbytes>10000000</maxrequestbytes>

<maxpiperequests>10</maxpiperequests>

<maxAcceptRate/>

<certType/>

<certURI/>

<certPW/>

<keyURI/>

<keyPW/>

<secureProtocol/>

<cipherlist/>

4) Change <conntype/> to read as -

<!-- DO NOT REMOVE THIS -->

<Connector name="defaultport">

<port>5250</port>

<mustlisten>true</mustlisten>

<conntype>secure</conntype>

<conntimeout>120</conntimeout>

<peektimeout>30</peektimeout>

<maxconnections>1000</maxconnections>

<maxrequestbytes>10000000</maxrequestbytes>

<maxpiperequests>10</maxpiperequests>

<maxAcceptRate/>

<certType/>

<certURI/>

<certPW/>

<keyURI/>

<keyPW/>

<secureProtocol/>

<cipherlist/>

5) Save the file and Restart igateway service.