AWI v21 unable to configure jetty to use https | Keystore not found
search cancel

AWI v21 unable to configure jetty to use https | Keystore not found

book

Article ID: 244721

calendar_today

Updated On:

Products

CA Automic Workload Automation - Automation Engine CA Automic One Automation

Issue/Introduction

Only HTTP connections work via the AWI Jetty Launcher?

AWI Jetty client runs fine when using HTTP port 80 

When we update configuration.properties and set it to the following to activate HTTPS, we an error in the Jetty log:

http.enabled=false
https.enabled=true
https.port=8443
https.keystore.filename= xxxx
https.keystore.password= xxxx
https.manager.password= xxxx

Error in AWI log file <Jetty>\osgi-tmp\0\<hostname>_ECC_LOG.00.txt:

2022-06-27 09:24:34,159 4aC:\Automic\Automation.Platform\WebInterface\osgi-tmp\00b-8ab5-fdba202ebb27 [INFO ] NOLOGIN/- NOUI   [com.uc4.ecc.jetty.JettyServerLauncher] - HTTP not enabled
2022-06-27 09:24:34,160 4a0b-8ab5-fdba202ebb27 [WARN ] NOLOGIN/- NOUI   [com.uc4.ecc.jetty.JettyServerLauncher] - Keystore not found. ssl not enabled.

Environment

Release : 21.0.2

Component : AWI / Jetty

Cause

The path to the keystore is not found because backslashes are not correctly interpreted

Resolution

With the following configuration using the existing AE keystore, it works:

Solution 1

Using the same certificate used in ucsrv.ini (as an example):

KEYSTORE=keystore.p12
KEYSTOREPASSWORD=automic
KEYPASSWORD=automic
KEYALIAS=automic

Copy the AE Keystore keystore.p12 to the AWI config folder "C:\Automic\Automation.Platform\WebInterface\config"

Update <Jetty>\config\configuration.properties

Configuration.properties:

defaultHomeDashboard=WELCOME.DASHBOARD
parameter_login.enabled=true
http.port=8080
http.enabled=false
https.enabled=true
https.port=7443
https.keystore.filename=keystore.p12
https.keystore.password=automic
https.manager.password=automic

Solution 2

Leave the certificate in place but use backslashes to escape the backslashes [Windows only]:

Configuration.properties:

defaultHomeDashboard=WELCOME.DASHBOARD
parameter_login.enabled=true
http.port=8080
http.enabled=false
https.enabled=true
https.port=7443
https.keystore.filename= C:\\Automic\\Automation.Platform\\Automation.Engine\\bin\\keystore.p12
https.keystore.password=automic
https.manager.password=automic

Result

Restarted the awi service from service manager

2022-06-27 09:34:02,788 4978-86d2-087a80acc2da [INFO ] NOLOGIN/- NOUI   [com.uc4.ecc.jetty.JettyServerLauncher] - HTTP not enabled

2022-06-27 09:34:05,852 4978-86d2-087a80acc2da [INFO ] NOLOGIN/- NOUI   [com.uc4.ecc.jetty.JettyServerLauncher] - JettyServerLauncher started at: https://blrbdl002701-01:7443/awi

 

Additional Information

Enabling TLS/SSL for Installations with the Bundled Jetty Launcher

Powered by Wolken Software