TMACUL

CA USS::. Como configurar o SSL no Unified Self Service

Blog Post created by TMACUL Champion on May 3, 2017

O documento oficial da CA Technologies está publicado em:

How To Configure SSL for Tomcat With Unified Self Service (USS) 

 

 

ImagesDescription

01. Gerar a chave, acesse o diretório

 

cd C:\Program Files\CA\Self Service\OSOP\tomcat-7.0.40\jre\bin

 

keytool -genkey -alias tomcatserver -keypass changeit -keyalg RSA

 

02. Exportar certificado

 

Export key into a certificate

 

keytool -export -alias tomcatserver -keypass changeit -file myserver.cert

03.  Importar certificado para o USS

 

Import the certificate into USS tomcat server JRE.

 

keytool -import -alias tomcatserver -file "C:\Program Files\CA\Self Service\OSOP\tomcat-7.0.40\jre\bin\myserver.cert" -keypass changeit -keystore "C:\Program Files\CA\Self Service\OSOP\tomcat-7.0.40\jre\lib\security\"

04. Abra o arquivo server.xml em  C:\Program Files\CA\Self Service\OSOP\tomcat-7.0.40\conf\server.xml

 

05.

e procure pela TAG <Connector port="8443" protocol="HTTP/1.1" SSLEnabled="true"

 

Locate server.xml in Tomcat being used by USS (Liferay) and take a backup of the file. The path should be similar to:

 

cd C:\Program Files\CA\Self Service\OSOP\tomcat-7.0.40\conf\server.xml

 

Locate the section to configure SSL searching for

 

<Connector port="8443" protocol="HTTP/1.1" SSLEnabled="true"

06. Remova as TAGS HTML de comentário  <!-- ... -->

 

Remove the comment tags <!-- and --> to uncomment this section

7) Inclua as informações na TAG

 

keystoreFile="C:/Users/Administrator/.keystore" keystorePass="changeit"

 

Set the keystoreFile and keystorePass with the path of the keystore and password. Example:

 

<Connector port="8443" protocol="HTTP/1.1" SSLEnabled="true" keystoreFile="C:/Users/Administrator/.keystore" keystorePass="changeit"
               maxThreads="150" scheme="https" secure="true"
               clientAuth="false" sslProtocol="TLS" />

08. Salve o arquivo  / Save Changes

 

09. Reinicie os serviços / Restart USS Services

 

10.Faça login no USS

 

Log into USS by using SSL port. URL example: https://localhost:8443/web/frontoffice

Outcomes