Initializing help system before first use

Instructions

You can enable HTTPS with Xpress Insight Server.
  1. Ensure that your SSL certificate (certificate.pem) and private key (privatekey.pem) files are saved in the <INSIGHT_HOME>\server\wildfly-9.0.1.Final\standalone\configuration directory.
  2. Convert the PEM files into a PKCS12 key store, and then into a java format keystore. You will be prompted to provide a password. Note the password, for example: openssl pkcs12 -export -name host.company.com -in certificate.pem -inkey privatekey.pem -out xpress-insight.p12
  3. Convert the PKCS12 file into a Java Key Store file. You will be prompted to enter the password entered in the previous step, and to provide a password for the destination keystore. Note this also: keytool -importkeystore -destkeystore xpress-insight.jks -srckeystore xpress-insight.p12 -srcstoretype pkcs12 -alias host.company.com
  4. Ensure the Insight Server is not running.
  5. Save a backup of standalone.xml.
  6. Open <INSIGHT_HOME>\server\wildfly-9.0.1.Final\standalone\configuration\standalone.xml.
  7. Find the <security-realms> section, and add the following xml snippet after the <security-realm name="ApplicationRealm"> section. Update the alias attribute to match the name parameter specified in step 2.
    Note You need to provide the keystore password. If your key does not have a password, you can remove the key-password attribute: 
    <security-realm name="SSLRealm">
    <server-identities>
        <ssl>
            <keystore path="xpress-insight.jks" 
                      relative-to="jboss.server.config.dir"
                      keystore-password="changethis" 
                      alias="host.company.com"
                      key-password="changethis"/>
        </ssl>
    </server-identities>
</security-realm>
  8. Locate the <http-listener> and add an additional listener line underneath, for example: 
    <http-listener name="default" socket-binding="http" max-post-size="67108864"/>
<https-listener name="https" socket-binding="https" security-realm="SSLRealm" max-post-size="67108864"/>
  9. Start up the Xpress Insight Server. Navigate to https://host.company.com:8443/insight and log on as normal.
Parent Topic Enabling HTTPS with Xpress Insight Server