Manualshelf

User guide

ManualsBrandsMSI ManualsHome building and DecorSupero CSE-M35S
281282283284285286287288289290
ManageEngine Firewall Analyzer :: User Guide
286
Zoho Corp.
Using the existing SSL certificate
You can export the Wild card certificate to a .pfx file and then follow the
instructions given below to configure the same in Firewall Analyzer.
Stop ManageEngine Firewall Analyzer service
Copy the .pfx file to the location <Firewall Analyzer
Home>\server\default\conf
Go to the location <Firewall Analyzer Home>\server\default\deploy\jbossweb-
tomcat50.sar and open the file server.xml in word pad, and locate the
entries in the file as below:
<!-- SSL/TLS Connector configuration using the admin devl guide keystore -->
<Connector port="8443" address="${jboss.bind.address}"
maxThreads="100" minSpareThreads="5" maxSpareThreads="15"
scheme="https" secure="true" clientAuth="false"
keystoreFile="${jboss.server.home.dir}/conf/chap8.keystore"
keystorePass="rmi+ssl" sslProtocol = "TLS"
SSLCipherSuite="SSL_RSA_WITH_3DES_EDE_CBC_SHA"/>
Replace the file name chap8.keystore with the pfx file name (<pfx file
name>.pfx) and also enter the keystoreType="pkcs12" after the file
name and also replace the keystorePass value 'rmi+ssl' with the password
for the .pfx file.
The entries should be as given below:
<!-- SSL/TLS Connector configuration using the admin devl guide keystore -->
<Connector port="8443" address="${jboss.bind.address}"
maxThreads="100" minSpareThreads="5" maxSpareThreads="15"
scheme="https" secure="true" clientAuth="false"
keystoreFile="${jboss.server.home.dir}/conf/<pfx file name>.pfx"
keystoreType="pkcs12"
keystorePass="<password for the .pfx file>" sslProtocol = "TLS"
SSLCipherSuite="SSL_RSA_WITH_3DES_EDE_CBC_SHA"/>
Restart Firewall Analyzer service.
How to install SSL certificate for Firewall Analyzer
Follow the instructions given below for SSL Installation:
Step 1: Create a new Keystore
1. You will be using the keytool command to create and manage your new Keystore
file. When you are ready to create your keystore go to the directory where you
plan to manage your Keystore and certificates (<Firewall Analyzer
Home>\jre\bin\). Enter the following command:
keytool -genkey -alias <our_alias_name> or [Domain Name] -keyalg
RSA -keystore chap8.keystore