Obtain a valid SSL certificate file (.crt or .cer) and private key file (.key) for the Protector Web Server from your organization's Certificate Authority.
To configure server-side SSL for the Web UI:
- Copy your SSL certificate file to the folder <installation path>/bin/db/ssl/webui/certificates
- Copy your SSL private key file to the folder /opt/hitachi/protector/bin/db/ssl/webui/private
- On the Master node, open a command prompt at <installation_path>/bin.
- Stop the Protector hub service by entering the command diagdata --stop hub.
-
Open the configuration file
<installation_path>/db/config/uic-system-config.cfg in a text editor
and do the following:
-
Set SSL Certificate to the location of your SSL
certificate file:
<item argtype="single" name="SSL Certificate"> <value type="string"> <installation path>/bin/db/ssl/webui/certificates/your_certificate.crt</value> </item> -
Set SSL Certificate Key to the location of your
SSL private key file:
<item argtype="single" name="SSL Certificate Key"> <value type="string">/opt/hitachi/protector/bin/db/ssl/webui/private/your_key.key</value> </item> -
Set the Webserver SSL value to true:
<item argtype="single" name="Webserver SSL" <value type="bool">true</value> <\item>
You may need to insert the above XML within the following section of the config file:<cofioxmllist> ... <\cofioxmllist>
Note: If you cut and paste these code fragments please ensure that line ends are correctly positioned. -
Set SSL Certificate to the location of your SSL
certificate file:
- Save the changes to the uic-system-config.cfg file.
- Restart the Protector hub service on the Master node by entering the command diagdata --start.