Converting Skybot Scheduler to Run in SSL Mode
- Additional information is available on the apache tomcat website.
- If you wish to use CA trusted certificates, please see a CA authority’s website on how to generate the correct keys for Tomcat server.
Generating a Self-Signed Certificate
You must first generate or obtain a .keystore file and note the password.
- The JAVA_HOME environment variable must be set to the location of a valid JVM.
- Issue one of the following commands from a command prompt:
- Windows: %JAVA_HOME%\bin\ keytool -keysize 2048 -genkey -alias skybot -keyalg RSA -keystore skybot.keystore
- UNIX: $JAVA_HOME/bin/ keytool -keysize 2048 -genkey -alias skybot -keyalg RSA -keystore skybot.keystore
- After creating a password, you will be asked for additional information. This information is not required. Press enter to skip these questions.
- Remember the password you entered while generating the key.
- The resulting skybot.keystore file is located in your working directory.
Enabling the Certificate
- End the Skybot Scheduler Server.
- • Copy the skybot.keystore file into the ...\Skybot\Skybot Scheduler(*server on Linux)\conf folder.
- Change the following settings in the Connector for protocol="HTTP/1.1":
- port= "8008" to "8443"
- SSLEnabled= "false" to "true"
- scheme= "http" to "https"
- secure= "false" to "true"
- keystoreFile= “conf/.keystore” to “conf/skybot.keystore"
- keystorePass= “robotMP” to “[password you created with the skybot.keystore]”
- Change the following settings in the Connector for protocol="HTTP/1.1":
- Change the redirectPort= "8008" to "8443" in the Connector for protocol= "AJP/1.3"
- Save your changes to server.xml.
- Start the Skybot Scheduler Server.
After You Are Done
Change your browser links to use https (vs. http) and the correct port (8443):
https://xxx.xxx.xxx.xxx:8443/
where xxx.xxx.xxx.xxx is the IP address of your Enterprise Server.
