Administering : Security considerations for Focal Point® : Enabling HTTPS
  
Enabling HTTPS
Focal Point® 6.6 and later provides an option to install Apache Tomcat 7.0 server along with Focal Point®. If you select that option, the Apache Tomcat 7.0 application server is installed with HTTPS enabled. If you are using an earlier version of Focal Point®, and if the security guidelines at your organization require you to use HTTPS, you can enable HTTPS by securing an SSL certificate, and making the required configuration changes.
About this task
Focal Point® 6.6 and above provides an option to install Apache Tomcat 7.0 server along with Focal Point® installation. If you select the option, the Tomcat 7.0 application server is installed with HTTPS enabled.
If you are using an earlier version of Focal Point® with Tomcat as the application server, follow these steps to enable HTTPS.
Note If you are using Websphere Application Server, do not follow the procedure outlined in this topic. Instead, follow the proprietary steps supported by Websphere Application Server.
Procedure
1 For the system where Focal Point® server is installed, purchase an SSL certificate and key from an SSL certificate provider. Optional: Generate a free certificate and key by using the key generator tool provided by Sun Java.
2 Go to the Tomcat Installation Folder\conf and open the server.xml file.
3 Uncomment the connector defined for SSL.
Tip: To locate the connector for SSL, search for: Define a SSL
Connector port="8443"
protocol="HTTP/1.1"
SSLEnabled="true"
maxThreads="150"
scheme="https"
secure="true" clientAuth="false"
sslProtocol="TLS"
4 Change the SSL connector code to:
sslProtocol="TLS"keystoreFile="c:/focal.keystore"
keystorePass="password_entered"
5 Save the server.xml file.
6 Restart the Apache Tomcat server.
7 Open Focal Point® by using the following URL:
https://ipaddress:8443/fp/servlet/Login
A warning certificate is displayed. Click Yes, and then log in to Focal Point®.
Result
A lock image that is displayed in the lower right corner of the web browser indicates that HTTPS is enabled.
See also
Authentication in Focal Point®
Getting started
Security settings
Security considerations for Focal Point®