CA Single Sign-On Tech Tip by Sau Lai Wong, Senior Support Engineer for 14th July 2015.
1. Stop the WAM UI service.
2. Update the SSL port in bindings-jboss-beans.xml file residing under <adminui>\server\default\conf\bindingservice.beans\META-INF\ directory:
<xsl:template match="Connector[@SSLEnabled='true' and @port = '8443']">
<entry>
<key>httpsPort</key>
<value>8443</value>
</entry>
3. Update the SSL port in server.xml residing under <adminui>\server\default\deploy\jbossweb.sar\ directory:
<Connector URIEncoding="UTF-8" acceptCount="100" address="${jboss.bind.address}" connectionTimeout="20000" emptySessionPath="true" enableLookups="false" maxHttpHeaderSize="10240" maxPostSize="0" port="8080" protocol="HTTP/1.1" redirectPort="8443"/>
<Connector SSLEnabled="true" URIEncoding="UTF-8" acceptCount="100" address="${jboss.bind.address}" ciphers="SSL_RSA_WITH_RC4_128_MD5,SSL_RSA_WITH_RC4_128_SHA,TLS_RSA_WITH_AES_128_CBC_SHA,TLS_DHE_RSA_WITH_AES_128_CBC_SHA,TLS_DHE_DSS_WITH_AES_128_CBC_SHA,SSL_RSA_WITH_3DES_EDE_CBC_SHA,SSL_DHE_RSA_WITH_3DES_EDE_CBC_SHA,SSL_DHE_DSS_WITH_3DES_EDE_CBC_SHA,TLS_RSA_WITH_AES_256_CBC_SHA,TLS_DHE_RSA_WITH_AES_256_CBC_SHA" connectionTimeout="20000" emptySessionPath="true" enableLookups="true" keyAlias="tomcat" keystoreFile="jsse.keystore" keystorePass="changeit" keystoreType="jks" maxHttpHeaderSize="10240" maxPostSize="0" maxSpareThreads="75" minSpareThreads="5" port="8443" protocol="HTTP/1.1" scheme="https" secure="true"/>
4. If you have previously registered the WAM UI over SSL before, please remove the ‘data’ folder residing under <adminui>\server\default\ directory, cleanup the relevant trusted host and admin objects.
5. Start WAM UI and access the WAM UI over SSL with the new SSL port.