Setting up security connections for APM Components to use HTTPS.

Document ID : KB000010941
Last Modified Date : 14/02/2018
Show Technical Document Details
Introduction:

This knowledge doc explains how to setup security connections through HTTPS for APM components.

Background:

 Explains how to configure the CEM, Workstation, WebView and TeamCenter to use the security connections.

Environment:
APM 10.5.x Linux and Windows platform
Instructions:

Configuring to use security ports 443 and 444

Step 1: Set HTTPS for MOM.

a) Stop the MOM and WebView services. 

b) Go to <APM root directory>\config

c) Edit the IntroscopeEnterpriseManager.properties file and change the following parameters:
introscope.apmserver.ui.command.center.url=https://<MOM Server Hostname>:443/#/home

Uncomment (Remove the #) of:
introscope.enterprisemanager.webserver.jetty.configurationFile=em-jetty-config.xml

Save the file.

d) Edit em-jetty-config.xml file

Find the first addConnector session (<Call name="addConnector">)

Change the port from 8444 to 444

From
<Set name="port">8444</Set>

To
<Set name="port">444</Set>

Go to the second addConnector session (<Call name="addConnector">)

This second session is commented, so remove the characters “<!--“ before “<Call Name...” and the characters “-->” after </Call>.

After the changes, the session should then look like this:

<!-- that doesn't throw NPE on EM shutdown -->

<Call name="addConnector">
<Arg>
<New class="com.wily.webserver.NoNPESocketConnector">
<Set name="port">8081</Set>
<Set name="HeaderBufferSize">8192</Set>
<Set name="RequestBufferSize">16384</Set>
<Set name="ThreadPool">
<New class="org.mortbay.thread.BoundedThreadPool">
<Set name="minThreads">10</Set>
<Set name="maxThreads">100</Set>
<Set name="maxIdleTimeMs">60000</Set>
</New>
</Set>
</New>
</Arg>
</Call>

</Configure>

Save the file


Step 2: Set HTTPS for TEAMCENTER (WEBVIEW)


a) Edit the IntroscopeWebView.properties file

Uncomment (Remove the #) of:
introscope.webview.jetty.configurationFile=webview-jetty-config.xml

Change the introscope.webview.tcp.port from 8080 to 443
introscope.webview.tcp.port=443

Save

b) Edit webview-jetty-config.xml file

Find the first addConnector session (<Call name="addConnector">)

Change the port from 8443 to 443

From
<Set name="port">8443</Set>

To
<Set name="port">443</Set>

Go to the second addConnector session (<Call name="addConnector">)

This second session is commented so remove the characters “<!--“ before “<Call Name...” and the characters “-->” after </Call>

After the changes, the session should then look like this: 

<!-- that doesn't throw NPE on EM shutdown -->

<Call name="addConnector">
<Arg>
<New class="com.wily.webserver.NoNPESocketConnector">
<Set name="port">8080</Set>
<Set name="HeaderBufferSize">8192</Set>
<Set name="RequestBufferSize">16384</Set>
<Set name="ThreadPool">
<New class="org.mortbay.thread.BoundedThreadPool">
<Set name="minThreads">10</Set>
<Set name="maxThreads">100</Set>
<Set name="maxIdleTimeMs">60000</Set>
</New>
</Set>
</New>
</Arg>
</Call>

</Configure>

Save the file.


Step 3: Start MOM and WebView services

Step 4:  Open any web browser and verify that you can access the following URLs:
CEM and Workstation
https:// <MOM Server Hostname>:444

CEM
https:// <MOM Server Hostname>:444/wily

Workstation
https:// <MOM Server Hostname>:444/workstation

WebView
https:// <MOM Server Hostname>:443

TeamCenter
https:// <MOM Server Hostname>:443/ApmServer

Additional Information:

For more information see Configure Enterprise Manager Communications on site:

https://docops.ca.com/ca-apm/10-5/en/administrating/configure-enterprise-manager/configure-enterprise-manager-communications#ConfigureEnterpriseManagerCommunications-ConfiguretheEnterpriseManagerWebServerforHTTPS