Data360 Analyze

 View Only
  • 1.  D360A v3.8.4 - SSL not working after upgrade

    Posted 07-01-2022 16:08
    Hello,

    We upgraded D360A to v3.8.4, configured SSL but it is not working. It is listening on port 8080 but not on 8443.
    Need some help troubleshooting this issue.

    Thanks,
    KV

    ------------------------------
    Karpagavalli Sivalingam
    Windstream Communications
    Little Rock AR
    ------------------------------


  • 2.  RE: D360A v3.8.4 - SSL not working after upgrade

    Posted 07-02-2022 00:00
    Edited by Nitin Chawla 07-02-2022 00:02
    I follow the documentation - Setting up SSL with a CA certificate

    Few settings to check that worked for me.

    Please refer to FQDN that is used while creating the certificate. It may be same as hostname of VM, or any other name that you you would like to access the URL.

    FQDN = HOST_NAME_OF_VM

    1. Please refer to location Configuration/site-7731/conf for file cust.prop, it should have an entry
    ls.brain.webapp.contextUrl=https://HOST_NAME_OF_VM:8443/

    2. Please refer to location for Data360Analyze/tomcat/conf and see the below entry exist in server.xml

    <Connector protocol="org.apache.coyote.http11.Http11NioProtocol"
    port="8443" maxThreads="200" keyAlias="1" keyPass="???"
    scheme="https" secure="true" SSLEnabled="true"
    keystoreFile="conf/keystore.jks" keystorePass="changeit"
    clientAuth="false" sslProtocol="TLSv1.2" sslEnabledProtocols="TLSv1.2" compression="on"
    compressableMimeType="text/html,text/xml,text/plain,text/css,text/javascript,application/javascript,application/json"/>

    Replace ??? with actual key pass that you have used while importing certificate.

    3. Finally check correct entry exist in web.xml at location Data360Analyze/tomcat/conf

    <security-constraint>
    <web-resource-collection>
    <web-resource-name>Entire Application</web-resource-name>
    <url-pattern>/*</url-pattern>
    </web-resource-collection>
    <user-data-constraint>
    <transport-guarantee>CONFIDENTIAL</transport-guarantee>
    </user-data-constraint>
    </security-constraint>

    ------------------------------
    Regards,
    Nitin
    ------------------------------