Security configurationApache Server SSL setup with Transact on Linux

Apache Server SSL setup with Transact on Linux

To install and configure Apache server in SSL enabled mode on a RedHat Linux Environment, follow these steps.

  1. If Apache Server is not already installed on RedHat, run the following commands to install it. 
    yum install httpd* 
yum install mod_ssl
  2. Modify worker.properties and place it to the appropriate folder as follows.
    1. Add or modify the following lines. 
      #Tomcat instance name and type
worker.list=tomcat
worker.tomcat.type=ajp13

#Host name for Tomcat server
worker.tomcat.host=ephesoft123

#AJP port of Tomcat instance
worker.tomcat.host=8009

#sample worker.properties file is also shared with this document.
    2. Save the file on your server.

      The /etc/httpd/conf folder is recommended. If you save it elsewhere, provide the path in the <Apache Server>/conf/httpd.conf file.

  3. Install the mod_jk connector.

    This connector is required to integrate the Apache and Tomcat servers. See Apache Server documentation for instructions.

  4. Configure /etc/httpd/conf/httpd.conf, add or change the following lines in this file. 
    #server name and port
ServerName localhost:80

#enable mod_jk
LoadModule jk_module /etc/httpd/modules/mod_jk.so

#path of workers.properties
JkWorkersFile /etc/httpd/conf/workers.properties

#path of log file
JkLogFile /etc/httpd/logs/mod_jk.log
JklogLevel emerg
JkLogStampFormat “[%a %b %d %H:%M:%S %Y]”
JkOptions +ForwardKeySize +ForwardURICompat –ForwardDirectories
JkRequestLogFormat “%w %v %T %p %q %r %v %U”

#mod_jk mount the Tomcat application to the Apache server
JkMount /dcma* tomcat

#sample of the httpd.conf file is also shared with the document.
  5. Add the ssl.conf file to /etc/httpd/conf.d if it is not already present.

    Add or change the following lines in this file: 

    #certificate file path
SSLCertificateFile /etc/httpd/cert/server.crt

#key path
SSLCertificateKeyFile /etc/httpd/cert/server.key

#mod_jk mount tomcat application to apache server
JkMount /dcma* tomcat

#sample ssl.conf file is also shared with the document
  6. If required, change the SSL port in ssl.conf file.

    The default port value is 443.

  7. Copy the shared mod_ssl.so file to the modules folder of the Apache server if it is not already present there.
  8. Start the Transact Tomcat server.
  9. When Tomcat is running, start the httpd service using the following command: 
    cd /etc/httpd/bin apachectl start
  10. Use the HTTPS URL to access the Transact server.