Splash Business Intelligence Help Menu

Configuring SSL Connector

SplashBI needs be configured in order to use SSL. The following are the steps involved in configuring SSL in Tomcat:

1. Before Tomcat can accept secure connections, the user needs to configure an SSL Connector.
2. In a text editor, open the Tomcat server.xml file.The server.xml file is usually located in the conf folder of Tomcat's home directory.
3. Locate the connector that the user will use for the new keystore to secure. Usually, a connector with port 443 or 8443 is used.
4. If necessary, uncomment the connector.To uncomment a connector, remove the comment tags (<!-- and -->).
5. Specify the correct keystore filename and password in the connector configuration.
6. When done, the connector should look something like this:

<Connector port="443" maxHttpHeaderSize="8192" maxThreads="150" minSpareThreads="25" maxSpareThreads="75" enableLookups="false" disableUploadTimeout="true" acceptCount="100" scheme="https" secure="true"SSLEnabled="true" clientAuth="false" sslProtocol="TLS" keyAlias="server" keystoreFile="/home/user_name/your_site_name.jks" keystorePass="your_keystore_password" />

7.   Save your changes to the server.xml file.

8.   Restart Tomcat.

9.    Run the below command from root OS level user.

sudo iptables -t nat -I PREROUTING -p tcp --destination-port 443 -j REDIRECT --to-ports 8443

NOTE: If the user is using a version of Tomcat prior to Tomcat 7, the user needs to change keystorePass to keypass.