Remedy AR System Mid Tier - Enable SSL/HTTPS on Tomcat servers - INCLUDES VIDEO
Enable SSL/HTTPS on Tomcat servers where Remedy Mid-Tier can be installed
Remedy AR System Server
AR System Mid Tier
BMC Remedy Mid-tier Apache Tomcat
How to enable SSL/HTTPS on Tomcat servers.
How to import certificate in web server.
How to configure midtier with SSL certificate.
Web application security feature
This knowledge article may contain information that does not apply to version 21.05 or later which runs in a container environment. Please refer to Article Number 000385088 for more information about troubleshooting BMC products in containers.
The configuration to enable SSL (https) done at the web server level. Remedy components only use the webserver SSL infrastructure but Remedy components don't contain code that modifies or configures SSL.
The configuration is a property of the Web Server in use. To set it up properly, check the documentation of the vendor of the web server (eg tomcat), also if a load balancer is in use ssl certificates may be required at that level too.
Take into consideration that part of this configuration requires the involvement of IT security staff as the certificates must be signed by a valid certificate authority either inside or outside your organization. In either option a Certificate Authority needs to sign the certificate that will be installed on tomcat like digicert.com, letsencrypt.org or others.
There are two parts of this configuration, having a valid certificate for the web server and setting the certificate in the web server configuration. For the first part (gathering a signed certificate) we only can make suggestions or provide standard java tools to verify certificate validity. Please verify how a certificate is created and signed according to your organization policies.
For the second part vendors such as tomcat publish its own documentation.
Here is vendor information on setting up SSL for a Tomcat web server: http://tomcat.apache.org/tomcat-5.5-doc/ssl-howto.html http://tomcat.apache.org/tomcat-6.0-doc/ssl-howto.html http://tomcat.apache.org/tomcat-7.0-doc/ssl-howto.html http://tomcat.apache.org/tomcat-8.0-doc/ssl-howto.html
Resolution of issues related to SSL setup may require the involvement of your web server expert.