Skip Ribbon Commands
Skip to main content
Navigate Up
Sign In

Quick Launch

Average Rating:

facebook Twitter
Email
Print Bookmark Alert me when this article is updated

Feedback

HOW TO: Redirect HTTP requests of DIH console to HTTPS
Solution
Follow below steps to re-direct HTTP requests to HTTPS for DIH Console:

1. Shutdown DIH Services.
2. Take a backup of server.xml file which is in DataIntegrationHub/tomcat/conf/ directory.
3. Now, edit the server.xml file and search for the below section:
<!-- Define an SSL HTTP/1.1 Connector on port 8443 -->
    <!-- INFA change: The encoding of the output is now UTF-8, the port is now 18443, and the keystore is now set. -->
<!--
    <Connector port="18443" maxHttpHeaderSize="65535" protocol="HTTP/1.1" SSLEnabled="true"
               maxThreads="150" minSpareThreads="25"
               enableLookups="false" disableUploadTimeout="true"
               acceptCount="100" scheme="https" secure="true"
               clientAuth="false"
               sslProtocol="TLS" sslEnabledProtocols="TLSv1.2,TLSv1.1,TLSv1"
               URIEncoding="UTF-8"
                           compression="on"
                           compressionMinSize="2048"
                           noCompressionUserAgents="gozilla, traviata"
                           compressableMimeType="text/html,text/xml,text/css,text/javascript,application/javascript,application/json"
                           ciphers="TLS_RSA_WITH_AES_256_CBC_SHA256,
                        TLS_RSA_WITH_AES_256_CBC_SHA,
                        TLS_RSA_WITH_AES_128_CBC_SHA256,
                                                TLS_RSA_WITH_AES_128_CBC_SHA,
                                                SSL_RSA_WITH_3DES_EDE_CBC_SHA,
                        SSL_RSA_WITH_RC4_128_MD5,
                                                SSL_RSA_WITH_RC4_128_SHA"
               keystoreType="PKCS12"
               keystoreFile="conf/Default.keystore"
               keystorePass="changeit"
               server="unknown"
               />
-->
4.Uncomment "connector" section. It should look like as below:
<!-- Define a SSL HTTP/1.1 Connector on port 8443 -->
    <!-- INFA change: The encoding of the output is now UTF-8, the port is now 18443, and the keystore is now set. -->

    <Connector port="18443" maxHttpHeaderSize="65535" protocol="HTTP/1.1" SSLEnabled="true"
               maxThreads="150" minSpareThreads="25"
               enableLookups="false" disableUploadTimeout="true"
               acceptCount="100" scheme="https" secure="true"
               clientAuth="false"
               sslProtocol="TLS" sslEnabledProtocols="TLSv1.2,TLSv1.1,TLSv1"
               URIEncoding="UTF-8"
                           compression="on"
                           compressionMinSize="2048"
                           noCompressionUserAgents="gozilla, traviata"
                           compressableMimeType="text/html,text/xml,text/css,text/javascript,application/javascript,application/json"
                           ciphers="TLS_RSA_WITH_AES_256_CBC_SHA256,
                        TLS_RSA_WITH_AES_256_CBC_SHA,
                        TLS_RSA_WITH_AES_128_CBC_SHA256,
                                                TLS_RSA_WITH_AES_128_CBC_SHA,
                                                SSL_RSA_WITH_3DES_EDE_CBC_SHA,
                        SSL_RSA_WITH_RC4_128_MD5,
                                                SSL_RSA_WITH_RC4_128_SHA"
               keystoreType="PKCS12"
               keystoreFile="conf/Default.keystore"
               keystorePass="changeit"
               server="unknown"
               />
5. Take a backup of web.xml file which is in DataIntegrationHub/tomcat/webapps/dih-console/WEB-INF directory:
6. Edit web.xml file and look for below section:
<!-- 2011-02-02
      ~ Force SSL for entire site.
      ~ Uncomment this security constraint to enforce that all http requests for this web application are redirected to https.
      ~ Note: enable/uncomment too the related SSL/https connector in file <tomcat>/conf/server.xml.
      ~ Note: verify the output in assembly/target/data-exchange-assembly.dir/internal/installer/ssl-config
      -->
    <!--
    <security-constraint>
        <web-resource-collection>
            <web-resource-name>Entire Application</web-resource-name>
            <url-pattern>/*</url-pattern>
        </web-resource-collection>
        <user-data-constraint>
            <transport-guarantee>CONFIDENTIAL</transport-guarantee>
        </user-data-constraint>
    </security-constraint>
    -->

7. Now, uncomment CONFIDENTIAL Web-security in web.xml file. It looks like below:
<!-- 2011-02-02
      ~ Force SSL for entire site.
      ~ Uncomment this security constraint to enforce that all http requests for this web application are redirected to https.
      ~ Note: enable/uncomment too the related SSL/https connector in file <tomcat>/conf/server.xml.
      ~ Note: verify the output in assembly/target/data-exchange-assembly.dir/internal/installer/ssl-config
      -->
    <security-constraint>
        <web-resource-collection>
            <web-resource-name>Entire Application</web-resource-name>
            <url-pattern>/*</url-pattern>
        </web-resource-collection>
        <user-data-constraint>
            <transport-guarantee>CONFIDENTIAL</transport-guarantee>
        </user-data-constraint>
    </security-constraint>
8. Save the files.
9. Start DIH services.
Now, if you enter the DIH Console URL with an HTTP request, it redirects to HTTPS protocol.

More Information
Reference
Applies To
Product: Data Integration Hub
Problem Type: Configuration
User Type: Administrator
Project Phase: Configure
Product Version:
Database:
Operating System:
Other Software:
Attachments
Last Modified Date:3/31/2020 3:17 AMID:608169
People who viewed this also viewed

Feedback

Did this KB document help you?



What can we do to improve this information (2000 or fewer characters)