Redirecting service catalog from Http to Https

book

Article ID: 40287

calendar_today

Updated On:

Products

CA Service Catalog CA Service Management - Asset Portfolio Management CA Service Management - Service Desk Manager

Issue/Introduction

Question:

How to configure Service Catalog url to redirect from HTTP to HTTPS ?

 Answer:

Steps to follow (for CA Service Catalog)  Server
1.Open the file server.xml located in the following folder USMHOME/view/conf/ in a text editor 
2.Make sure redirectPort is set to HTTPS port (SSL port) (highlighted below) 

 

<!-- Define a HTTP/1.1 Connector on port 14190 --> 
< Connector port="14195" enableLookups="false"redirectPort="14190" maxThreads="400" minSpareThreads="25" connectionTimeout="15000" 
disableUploadTimeout="true" compression="on" compressionMinSize="2048" 
compressableMimeType="text/html,text/plain,text/xml,text/css,text/javascript,image/png,image/gif,image/jpeg,application/json" 
useBodyEncodingForURI="false" URIEncoding="UTF-8" server="Service Catalog" maxHttpHeaderSize="20480"/> 

3.Make sure enableLookups="false" highlighted as below  

 

<!-- Define a SSL HTTP/1.1 Connector on port 8443 --> 

< Connector port="14190" enableLookups="false" tomcatAuthentication="false" maxHttpHeaderSize="20480" 
maxThreads="400" minSpareThreads="25" maxSpareThreads="100" debug="0" connectionTimeout="15000" 
disableUploadTimeout="true" compression="on" compressionMinSize="2048" 
compressableMimeType="text/html,text/plain,text/xml,text/css,text/javascript,image/png,image/gif,image/jpeg,application/json" 
scheme="https" secure="true" clientAuth="false" sslProtocol="TLS" SSLEnabled="true"
keystoreFile= "C:\catalognew.jks" keyAlias="catalog" keystorePass="password"/> 

 

4.Make sure you disable Load balancer connector ie load balancer is not being used (bold, italicized below) 

<!-- This is here for use with load balancers 

<Connector port="14009" enableLookups="false" redirectPort="14143" tomcatAuthentication="false" 
maxThreads="400" minSpareThreads="25" maxSpareThreads="100" protocol="AJP/1.3" />–> 

5. Save this file

6.Open file web.xml located in the following folder %USM_HOME%/view/conf/ in a text editor 

7.Add the following  lines just before the closure tag (</web-app>) 

<security-constraint> 
<web-resource-collection> 
<web-resource-name>Protected Context</web-resource-name> 
<url-pattern>/*</url-pattern> 
</web-resource-collection> 

<user-data-constraint> 
<transport-guarantee>CONFIDENTIAL</transport-guarantee> 
</user-data-constraint> 
</security-constraint> 
</web-app> 

8. Save the file

9. Restart catalog windows service and verify that the HTTP URL is automatically redirected to HTTPS

 

REFERENCE: http://tkurek.blogspot.in/2013/07/tomcat-7-http-to-https-redirect.html

 

Environment

Release: CASVCT99000-12.9-Service Catalog
Component: