ConfiguringHow to Configure CA Service Catalog to Use Secure Socket Layer › Configure Service View to Use Secure Socket Layer

Previous Topic: Merge Keystore Files

Next Topic: Configure CA Workflow to Use Secure Socket Layer

Configure Service View to Use Secure Socket Layer

As part of configuring CA Service Catalog to use Secure Socket Layer (SSL), you configure Service View to use SSL.

To configure Service View to use SSL

  1. Edit the server.xml file to support SSL.

    The file is updated to help support SSL for CA Service Catalog.

  2. Open the %USM_HOME%\view\conf\viewService.conf file, using a text editor such as Notepad, and do the following:
    1. Update the following line with the path name and file name of the keystore file: 
      wrapper.java.additional.number=-Djavax.net.ssl.trustStore="%USM_HOME%/.keystore"
    2. Update the following line with the password of the keystore file: 
      wrapper.java.additional.number=-Djavax.net.ssl.trustPass=changeit
    3. Save and close the viewService.conf file.
  3. On the CA Service Catalog GUI, select Administration, Configuration, Server Information.

    The cursor moves to the Server Information section.

  4. Complete the fields in this section as follows:

    For Host Name, specify the name of the host where Service View is installed.

    For Port Number, specify the port where HTTPS is configured.

    For Enable HTTPS, specify Yes.

  5. Move to the CA Workflow configuration section and click Configure.

    The USM Workflow actors are updated to use HTTPS communication.

  6. Restart Service View.
  7. Log in to CA Service Catalog using the URL https://hostname:port/usm/wpf rather than URL http://hostname:port/usm/wpf.

    You see a trusted certificate prompt, which indicates that you are using HTTPS.

  8. Optionally, disable HTTP access by commenting the section for the HTTP connector. To do so, add the "<!--" and "-->" comment markers to the first and last lines, as shown in the following example: 
    <!--
<Connector port="8080" enableLookups="true" redirectPort="8443"
      acceptCount="100"  maxThreads="150" minSpareThreads="25" maxSpareThreads="75" debug="0" connectionTimeout="20000" disableUploadTimeout="true"
      useBodyEncodingForURI="false" URIEncoding="UTF-8" />
-->

You have configured Service View to use SSL.