Hi
For SPS starting as root would be needed to allow access to listen on :80 and :443
Also systemd did not expand environment variables, although that was somethign they were goign to fix.
Here is script from another CA Services consultant from an earlier internal discussion, Rich_Faust :
[Unit]
Description=CA Access Gateway Service
After=syslog.target network.target
[Service]
Type=forking
Environment=JAVA_HOME=/apps/java/latest/bin/java
Environment=CATALINA_PID=/apps/CA/secure-proxy/gateway/secure_proxy/proxy-engine/tmp/sps.pid
Environment=CATALINA_HOME=/apps/CA/secure-proxy/gateway/Tomcat
Environment=CATALINA_BASE=/apps/CA/secure-proxy/gateway/Tomcat
Environment='CATALINA_OPTS=-Xms512M -Xmx1024M -server -XX:+UseParallelGC'
Environment='JAVA_OPTS=-Djava.awt.headless=true -Djava.security.egd=file:/dev/./urandom'
ExecStart=/apps/CA/secure-proxy/gateway/proxy-engine/sps-ctl startssl
ExecStop=/apps/CA/secure-proxy/gateway/proxy-engine/sps-ctl stop
User=root
Group=root
UMask=0007
RestartSec=60
Restart=always
[Install]
WantedBy=multi-user.target
Then:
systemctl status ca-access-gateway
was used to show the output.
Cheers - Mark
--
PS : No credit to me for this one, I was just keeping eye on the issue since it is one I will face :-)