Halty

Securing BO reports over SSL

Discussion created by Halty on Jun 4, 2010
Latest reply on Jun 18, 2010 by Chris_Hackett
All,

I recently had success after upgrading to CA PPM v12 with BO. Our app tier was configured to serve web requests under SSL. By default, the BO report server is configured for regular HTTP traffic. Thus, we had an insecure reporting environment.

The steps to get SSL up and running for BO are as follows.

1. Configure tomcat on BO server to serve web requests via SSL (with a valid cert)
2. Configure APP server tomcat to server web requests via SSL (with a valid cert)
3. Install certificate in the app and report server's JDK Security/cacerts file (this is the part that most people miss IMHO).
4. Configure web settings in NSA for the reporting system to use HTTPS and the proper ports and make sure domain names match the certificates to avoid certificate warnings.

That's all.

Outcomes