test

Sun N1 Service Provisioning System 6.0 Installation Guide

ProcedureHow to Enable HTTPS Connections from the Master Server Browser Interface to the Web Interface of the Master Server

Complete the following steps to configure the browser interface to use HTTPS instead of HTTP to connect to the Master Server.

Before You Begin

Generate an SSL Certificate and obtain a signature from a Certifying Authority if necessary. For instructions, see Creating a Keystore File and Keystore Password for HTTPS Connections.

  1. Stop the Master Server.


    % N1SPS6.0-MasterServer-home/server/bin/cr_server stop

    N1SPS6.0-MasterServer-home is the directory where you installed the Master Server.

  2. Move the keystore file to the Master Server home directory.


    %mv /keystore-location N1SPS6.0-MasterServer-home/server/tomcat/keystore

    /keystore-location is the location and filename where you stored the generated key. N1SPS6.0-MasterServer-home is the directory where you installed the Master Server.

  3. Change to the directory where you moved the keystore file.


    % cd N1SPS6.0-MasterServer-home/server/tomcat/

    N1SPS6.0-MasterServer-home is the directory where you installed the Master Server.

  4. Set the ownership and permissions on the keystore file:


    %chmod 600 keystore


    %chown MS_user:MS_group keystore

    MS_user is the user that owns the Master Server application. MS_group is the group that owns the Master Server application. /keystore-location is the filename where you stored the generated key.

  5. Change to the directory where the Tomcat configuration files are located.


    % cd /N1SPS6.0-MasterServer-home/server/tomcat/conf

    N1SPS6.0-MasterServer-home is the directory where you installed the Master Server.

  6. In the server.xml file, uncomment the following lines.

    XML comments begin with <!-- and end with -->. 


    <Connector port="8443" maxHttpHeaderSize="8192" 
maxThreads="150" minSpareThreads="25" maxSpareThreads="75" 
enableLookups="false" disableUploadTimeout="true"acceptCount="100" 
scheme="https" secure="true" clientAuth="false" sslProtocol="TLS"/>>

  7. Edit the Connector tag as follows.


    <Connector port="8443" maxHttpHeaderSize="8192" 
maxThreads="150" minSpareThreads="25" maxSpareThreads="75" 
enableLookups="false" disableUploadTimeout="true" acceptCount="100" 
scheme="https" secure="true" clientAuth="false" sslProtocol="TLS" 
keystoreFile="/opt/SUNWn1sps/N1_Service_Provisioning_System_6.0/server/tomcat/keystore" 
keystorePass="password"/>

    N1SPS6.0-MasterServer-home is the directory in which you installed the Master Server. password is the encoded version of the password.