Widjaja_Sangtoki

Spec KB: How to enable ModSecurity in SSL mode reusing existing digital certificate used for Spectrum Tomcat

Discussion created by Widjaja_Sangtoki Employee on Jun 28, 2016

Spec KB: How to enable ModSecurity in SSL mode reusing existing digital certificate used for Spectrum Tomcat

Document ID:  TEC1911552

ShowHide Technical Document Details

  • Products
    • CA Spectrum
  • Releases
    • CA Spectrum:Release:10.1
  • Components
    • OneClick / Apache HTTP Server

ISSUE: Starting from Spectrum 10.1 onward we can enable ModSecurity Web Application Firewall in Spectrum to prevent malicious remote clients from accessing OneClick Server (Tomcat). Some of you may have configured Tomcat in SSL before we have this feature. In this case, if you want to utilize this ModSecurity feature for improved security, that naturally means that you want to configure ModSecurity in SSL mode reusing existing digital certificate on the OneClick Server. This article explains how you can migrate digital certificate for Tomcat to be reusable for Apache HTTP server where ModSecurity is implemented.

 

Knowledge Document Link:

 

http://www.ca.com/us/support/ca-support-online/product-content/knowledgebase-articles/tec1911552.aspx

Outcomes