CA SiteMinder® Federation Standalone Guide › SSL Administration for Federation System › SSL Administration for the Apache Web Server and the UI › Remove SSL from the Embedded Apache Server and the UI

Remove SSL from the Embedded Apache Server and the UI

• Remove SSL from the embedded Apache web server if you:
  • no longer require a back channel connection for artifact single sign-on
  • no longer want to use SSL
• Remove SSL from the UI connection if you no longer want an SSL connection to the UI.

The Restart feature lets you disable the existing SSL configuration and delete all files associated with the SSL configuration. Specifically, it deletes the private key and server certificate and the original server request file.

To disable SSL and remove related files

1. Log in to the Administrative UI.
2. Select Infrastructure, SSL Configuration.

   The SSL Configuration dialog opens.

3. Click Restart in the group box for the feature that does not require SSL.

   A prompt to confirm the restart is displayed.

4. Click Yes.

   The SSL configuration is removed from the system.

5. Restart the federation services according to your operating environment.
   • Windows

     Use the stop and start shortcuts as follows. If you logged in as a network user and not a local administrator, right-click the shortcut and select Run as administrator.

     1. Start, All Programs, CA, Federation Standalone, Stop services
     2. Start, All Programs, CA, Federation Standalone, Start services
   • UNIX

     a. Open a command window.

     b. Run the following scripts:

     federation_install_dir/fedmanager.sh stop

     federation_install_dir/fedmanager.sh start

     Note: Do not stop and start the services as the root user.

   Restarting the services lets the Apache web server and the UI return to non-SSL operation. Subsequent HTTPS requests that come in to CA SiteMinder® Federation Standalone will fail. With SSL removed, all service URLs now have to start with http.