Midtier redirection from HTTP to HTTPS with RSSO agents

Version 2
    Share This:

    This document contains official content from the BMC Software Knowledge Base. It is automatically updated when the knowledge article is modified.


    PRODUCT:

    Remedy Single Sign On


    COMPONENT:

    Remedy Single Sign On


    APPLIES TO:

    Remedy Single Sign On any release (currently 9.1.04)



    PROBLEM:

    We are experiencing an issue where the post authentication by RSSO is directed to authenticate with AR Server. We would like to keep the connection as HTTPS when the server re-directs after authentication is done from RSSO.

    Example: https://loadbalanceservername/arsys redirects to RSSO server for authentication, but after authentication is done it sends it to https://localmidtierservername/arsys Midtier server instead of http://<MIDTIERHOST>
     


    CAUSE:

    This is a tomcat configuration component that installs with both HTTP and HTTPS ports available and defaults to unsecured HyperText Transfer Protocol.


    SOLUTION:

    This can be fixed with redirection to HTTPS: 

    In Tomcat’s server.xml, make the following change:

    <Connector URIEncoding="UTF-8"
                     connectionTimeout="20000"
                     maxHttpHeaderSize="8192"
                     port="80"
                     protocol="HTTP/1.1"
                     redirectPort="443"
                    proxyPort="443"
              scheme="https" />


    This properly redirects Tomcat to the reverse proxy, and allows everything to work correctly. 
    Restart of Tomcat is required. 


    Article Number:

    000228024


    Article Type:

    Solutions to a Product Problem



      Looking for additional information?    Search BMC Support  or  Browse Knowledge Articles