Disable HTTP port on AdminUI and CA Access Gateway (SPS)
search cancel

Disable HTTP port on AdminUI and CA Access Gateway (SPS)

book

Article ID: 229454

calendar_today

Updated On:

Products

SITEMINDER CA Single Sign On Secure Proxy Server (SiteMinder)

Issue/Introduction

 

When running AdminUI and CA Access Gateway (SPS), how to disable http
(port 80) service and keep only https (port 443) open.

 

Environment

Version R12.8.x

Symantec - Access Gateway

Resolution

 

At first glance, in order to make the AdminUI to close the http port
and uses only the https, register it again in https as per this KD
(1).

About CA Access Gateway (SPS), in order to disable the port 80, enable
the ssl on SPS, and then remove the port 80 from httpd.conf or change
it for another port.

To do it easier, it's suggested to only enable ssl on the SPS, and
then block the access to port 80 by firewall on the SPS machine.

To configure CA Access Gateway (SPS), follow steps from
documentation (2).

 

Additional Information

 

(1)

    AdminUI (WAMUI) URL HTTPS 8443 and HTTP 8080 management and config
    https://knowledge.broadcom.com/external/article?articleId=208335

(2)

    Configuring SSL on Apache Web Server Manually
    https://techdocs.broadcom.com/us/en/symantec-security-software/identity-security/siteminder/12-8/configuring/access-gateway-configuration/configuring-ssl-for-access-gateway/configuring-ssl-on-apache-web-server-manually.html