AnsweredAssumed Answered

Enable SSL for Jaspersoft 6.2 web server using a wildcard cert (*.PFX) file

Question asked by vchinni on Jun 9, 2017
Latest reply on Jun 13, 2017 by Raghu.Rudraraju

I'm trying to enable SSL for Jaspersoft Web Server v6.2 having tomcat 8.5.x using a Wildcard cert file (*.pfx) that is currently implemented on apache tomcat  for CA SDM application. if it's possible to reuse the same cert file then could anyone please help me with the steps to implement SSL for Jaspersoft web server?

I have already tried few options in $CATALINA_BASE/conf/server.xml file, where $CATALINA_BASE represents the base directory for the Tomcat instance but to no luck. See below options, for your reference.

Option 1 -
<Connector SSLEnabled="true" clientAuth="false" enableLookups="false" keystoreFile="\conf\***.pfx" keystorePass="***" keystoreType="PKCS12" maxThreads="200" port="8443" protocol="HTTP/1.1" scheme="https" secure="true" sslProtocol="TLS" sslEnabledProtocols="TLSv1,TLSv1.1,TLSv1.2"
 
ciphers="TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384,TLS_ECDHE_ECDSA_WITH_AES_256_ 
CBC_SHA384,TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA,TLS_ECDHE_ECDSA_WITH_AES_256_C 
BC_SHA,TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256,TLS_ECDHE_ECDSA_WITH_AES_128_CB 
C_SHA256,TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA,TLS_ECDHE_ECDSA_WITH_AES_128_CBC 
_SHA,TLS_RSA_WITH_AES_256_CBC_SHA256,TLS_RSA_WITH_AES_256_CBC_SHA,TLS_RSA_WI 
TH_AES_128_CBC_SHA256,T0LS_RSA_WITH_AES_128_CBC_SHA"
/>
Option 2 - 
<Connector port="8443" protocol="org.apache.coyote.http11.Http11NioProtocol"
maxThreads="150" SSLEnabled="true">
<SSLHostConfig>
<Certificate certificateKeystoreFile="\conf\wildcard-cert.pfx"
keystorePass="jasper" type="PKCS12" />
</SSLHostConfig>
</Connector>
Option 3 - Using a self-signed cert but running into OpenSSL export cert issues.
Thank You!!

Outcomes