Configuring Secured Access for Web Applications

By default, a self-signed certificate is created and installed by the software. For production environments, you should create and install a certificate authority (CA) signed certificate for secured access using HTTP over SSL (HTTPS) to the Web Console, Compliance Search, and other web applications.


If you use a self-signed certificate, users will see a warning in the browser indicating that it is not safe to proceed.


The following is a high-level procedure for configuring secured access for web applications:

  1. Create a CA-Signed Certificate for the Tomcat Server.

  2. Configure the SSL Connector for the Tomcat Server.

  3. For Compliance Search, configure HTTPS for the Compliance Search Link from the Web Console.

Security Measures in Web Console and Command Center