Initializing help system before first use

Enable SSL

You can enable using HTTPS with Xpress Insight 5 server.
Note These instructions use the term <INSTALLDATADIR> to describe the path to your installation directory. This path will normally be C:\ProgramData\FICO\Xpress Insight\Server\ unless otherwise set by your IT department.
  1. Navigate to your Xpress Insight 5 data folder and use a suitable text editor to open the application.properties file. This folder location is:<INSTALLDATADIR>\config\application.properties.
  2. Reconfigure the server URL to reflect the switch to https (server only.) 
    # The URL of the Xpress Insight user interface.
insight.server.system.url=https://localhost:8443
  3. Comment out the http server port configuration: 
    # The http port this server will bind to.
#server.port=8080
  4. Un-comment and configure the following properties, configuring the KeyStore password specifying the KeyStore password used to create the SSL Certificate KeyStore above.
    Note Use port 9443 for the worker. 
    # Enables https connections.
server.ssl.enabled=true

# The https port this server will bind to.
server.port=8443

# The path to the keystore that contains the SSL certificate
server.ssl.key-store=config/insight-keystore

# The password to the keystore that contains the SSL certificate
server.ssl.key-store-password=<SSL Certificate KeyStore Password>

# The alias of the SSL certificate in this keystore to use to secure https connections
server.ssl.key-alias=insight-server-https

# TLS protocols and ciphers
server.ssl.protocol=TLS
server.ssl.enabled-protocols=TLSv1.2
server.ssl.ciphers=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384,TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
  5. Save the changes, and do not close the application.properties file.
  6. Run insight-server.sh script without any arguments. You will be prompted to enter a password that will be used to protect this keystore. Keep a note of this password for the next step.
  7. Configure this same keystore password in the application.properties file. Un-comment and edit the following line: 
    server.ssl.key-store-password=<password>
  8. Start the server and open https://localhost:8443.
  9. Your browser will warn you the certificate is invalid. Select proceed safely.
Parent Topic Enabling HTTPS with Xpress Insight 5 Server

© 2001-2020 Fair Isaac Corporation. All rights reserved. This documentation is the property of Fair Isaac Corporation (“FICO”). Receipt or possession of this documentation does not convey rights to disclose, reproduce, make derivative works, use, or allow others to use it except solely for internal evaluation purposes to determine whether to purchase a license to the software described in this documentation, or as otherwise set forth in a written software license agreement between you and FICO (or a FICO affiliate). Use of this documentation and the software described in it must conform strictly to the foregoing permitted uses, and no other use is permitted.