2 Replies Latest reply on Sep 4, 2012 6:04 AM by Jay SenSharma

    Need to configure HTTPS in domain mode..Require some instructions..

    Subhasis Basu Newbie

      Hi Everyone,

       

      I am new in JBoss server and trying to explore the new JBoss AS 7.1.1 Final server in both standalone and domain mode...I understand that this version is hugely different from the previous versions...Actually I was tasked to configure HTTPS in domain mode....

       

      So far I didn't face much problem to configure HTTPS in the standalone mode...I generated a self signed certificate and added a "connector" specifying the path of the server-keystore file in the "standalone.xml" file(thanks to some instructions posted in some other post in the forum)---it worked.

       

      Now to enable HTTPS in domain mode I was doing the same configuration changes(just adding the connector for "HTTPS") in domain.xml and was expecting it to work but I think it's not the way to do it...I was referring the Admin Guide doc to progress further and tried out some others things like configuring new "security-realms", but that also didn't work as I might have made some mistakes.

       

      If anyone can help me with the configuration in JBoss domain(cluster) mode soon, it'll be really helpful.

       

      Thanks,

      Subha..

        • 1. Re: Need to configure HTTPS in domain mode..Require some instructions..
          jaikiran pai Master

          Subhasis Basu wrote:

          Now to enable HTTPS in domain mode I was doing the same configuration changes(just adding the connector for "HTTPS") in domain.xml and was expecting it to work but I think it's not the way to do it

          What exact changes did you do and what problem are you running into?

          • 2. Re: Need to configure HTTPS in domain mode..Require some instructions..
            Jay SenSharma Master

            Hi Shubhasis,

             

                For simple HTTPs configuration you can try the following:

             

            Create a Test Key Strore like following

            keytool -genkey -keystore chap8.keystore -storepass rmi+ssl -keypass rmi+ssl -keyalg RSA -alias chapter8 -validity 3650 -dname "cn=chapter8 example,ou=admin book,dc=jboss,dc=org"

             

             

            The Using CLI configure the HTTPs connector like following:

            [userone@localhost bin]$ ./jboss-cli.sh -c --controller=localhost:9999

             

            [standalone@localhost:9999 /] /profile=full/subsystem=web/connector=https/:add(socket-binding=https,scheme=https,protocol=HTTP/1.1,secure=true,enabled=true,enable-lookups=false)

            {"outcome" => "success"}

             

            [standalone@localhost:9999 /] /profile=full/subsystem=web/connector=https/ssl=configuration:add(name="ssl",key-alias="chapter8",password="rmi+ssl",certificate-key-file="${jboss.server.config.dir}/chap8.keystore",protocol="TLSv1",verify-client="false",certificate-file="${jboss.server.config.dir}/chap8.keystore")

            {"outcome" => "success"}

             

                  A Simple Java Based testClient is mentioned in the followign link:  http://middlewaremagic.com/jboss/?p=2390

             

             

            Thanks

            Jay SenSharma