Previous Topic: Access the CA SOI Interfaces through an SSL ConnectionNext Topic: Backing Up CA SOI Components

Configuring the UI Server for SSLForce SSL Connection for All Interface Access

Force SSL Connection for All Interface Access

Although CA SOI supports SSL and non-SSL connections, it uses non-SSL by default. You can configure Tomcat on the UI Server to force the interfaces to use an SSL connection.

Note: The Mobile Dashboard already forces an SSL connection.

Follow these steps:

  1. Stop the CA SAM User Interface Server service on the UI Server.
  2. Open SOI_HOME\SAMUI\webapps\sam\WEB-INF\web.xml and change all <security-constraint><user-data-constraint> entries from NONE to CONFIDENTIAL.
  3. Save and close the file.

    The HTTP Dashboard address is automatically redirected to an HTTPS address.

  4. Start the CA SAM User Interface Server service.
  5. Enter an HTTP address for the Dashboard from a browser.

    The browser redirects to an HTTPS address and open a security certificate dialog.

If you cannot launch the Operations Console after you enable SSL, uninstall the Internet Explorer Enhanced Security Configuration feature. You can also add 'https://localhost' to the list of Trusted Sites to enable the Operations Console to start locally using SSL.