Adding SSL Functionality To HoudiniEsq On-Premise

Note: This article is a continuation of the “Accessing HoudiniEsq Remotely” KnowledgeBase entry. Please read this article first to better understand the steps to set up HoudiniEsq On-Premise for remote access.

This article will give detailed instructions for setting up SSL with HoudiniEsq On-Premise installations. Please ensure that you have your SSL certificate file from your vendor of choice before you undertake the steps in this article.This article also assumes a high level of knowledge of your operating system, and systems administration. If you do not understand the instructions, please call us at our support number listed on houdiniesq.com before making ANY changes.

Step 1: Use Java Keytool to Install the SSL/TLS Certificate to the host machine’s Keystore. The Keytool executable is called “keytool“, and it is located in the /java/bin folder of your HoudiniEsq directory. To execute it, open a command prompt (“cmd” in Windows Start menu, Terminal in /Applications/Utilities on mac) and navigate to /HoudiniEsq/java/bin/ in either Program Files (Win) or Applications (Mac). Then, type “keytool” followed by pressing the Enter key.

Keytool will ask you for passwords so write them down. We suggest keeping the jks file in same location of HoudiniESQ in its conf folder not somewhere else on the machine. So if you need to move the instance to another machine everything is within the ESQ folder.

 
 

Step 3: Configure Your SSL/TLS Connector under /Program Files/HoudiniESQ/conf/server.xml (or on Mac, /Applications/HoudiniESQ/conf/server.xml).

See the example below.
Make sure to remove or comment out e.g. <!– comment –> the port 80 Connector in the server.xml file and add a one for port 443.
<Connector port=”443” protocol=”HTTP/1.1″
maxHttpHeaderSize=”8192″
connectionTimeout=”20000″
maxConnections=”10000″
maxThreads=”10000″
minSpareThreads=”25″
maxSpareThreads=”75″
enableLookups=”false”
disableUploadTimeout=”true”
acceptCount=”100″
scheme=”https”
secure=”true”
SSLEnabled=”true”
clientAuth=”false”
sslProtocol=”TLS”
keyAlias=”server”
keystoreFile=”<path-to-jks-file>”
keystorePass=”<pwd you used with Java Keytool>”
/>