Tuesday, March 23, 2021

How to enable SSL for JBOSS App Port

Find the below clear steps for enabling SSL for App Port on JBOSS EAP 7.X version . 

1.edit host or standalone.xml and add below JKS 
<security-realms>
    <security-realm name="httpsrealm">
        <server-identities>
            <ssl>
                <keystore path="/app/ssl/keystore.jks" keystore-password="xxxx" alias="site"/>
            </ssl>
        </server-identities>
        <authentication>
            <truststore path="/app/ssl/truststore.jks" keystore-password="xxxxxx"/>
        </authentication>
    </security-realm>
</security-realms>

2. Add below under undertow with in the respective profile for domain setup and in standalone.xml for standalone mode setup 
<subsystem xmlns="urn:jboss:domain:undertow:3.1">
    <buffer-cache name="default"/>
    <server name="default-server">
        <http-listener name="default" socket-binding="http" redirect-socket="https"/>
        <https-listener name="https" secure="true" enabled-protocols="TLSv1.1,TLSv1.2" security-realm="httpsrealm" socket-binding="https"/>
		.....
3.Restart and verify the App Https port to see if it reflects configured https certificate
at

No comments:

Post a Comment

Subscribe to: Post Comments (Atom)

Featured

Weblogic Domain Migration

 In this blog we will see domain re-configuration which will be done as part of Weblogic migration from lower version to higher version [ Ex...