How to change the Admin UI SSL port (hosted on embedded JBOSS server)

Document ID : KB000030987
Last Modified Date : 14/02/2018
Show Technical Document Details

Steps to change WAM UI SSL port:

1. Stop the SiteMinder Administrative UI service (SMADMINUI). 

2. Update the SSL port in bindings-jboss-beans.xml file residing under <adminui>\server\default\conf\bindingservice.beans\META-INF\ directory:

 

<xsl:template match="Connector[@SSLEnabled='true' and @port = '8443']">

 

<entry>
<key>httpsPort</key>
<value>8443</value>
</entry>

 

3. Update the SSL port in server.xml residing under <adminui>\server\default\deploy\jbossweb.sar\ directory:


<Connector URIEncoding="UTF-8" acceptCount="100" address="${jboss.bind.address}" connectionTimeout="20000" emptySessionPath="true" enableLookups="false" maxHttpHeaderSize="10240" maxPostSize="0" port="8080" protocol="HTTP/1.1" redirectPort="8443"/>

<Connector SSLEnabled="true" URIEncoding="UTF-8" acceptCount="100" address="${jboss.bind.address}" ciphers="SSL_RSA_WITH_RC4_128_MD5,SSL_RSA_WITH_RC4_128_SHA,TLS_RSA_WITH_AES_128_CBC_SHA,TLS_DHE_RSA_WITH_AES_128_CBC_SHA,TLS_DHE_DSS_WITH_AES_128_CBC_SHA,SSL_RSA_WITH_3DES_EDE_CBC_SHA,SSL_DHE_RSA_WITH_3DES_EDE_CBC_SHA,SSL_DHE_DSS_WITH_3DES_EDE_CBC_SHA,TLS_RSA_WITH_AES_256_CBC_SHA,TLS_DHE_RSA_WITH_AES_256_CBC_SHA" connectionTimeout="20000" emptySessionPath="true" enableLookups="true" keyAlias="tomcat" keystoreFile="jsse.keystore" keystorePass="changeit" keystoreType="jks" maxHttpHeaderSize="10240" maxPostSize="0" maxSpareThreads="75" minSpareThreads="5" port="8443" protocol="HTTP/1.1" scheme="https" secure="true"/>

 

4. If you have previously registered the WAM UI over SSL before, please remove the ‘data’ folder residing under <adminui>\server\default\ directory, cleanup the relevant trusted host and admin objects.

5. Start the Administrative UI service and access the Admin UI over SSL with the new SSL port.