Enabling SSL between FlowForce Web Server and FlowForce Server

www.altova.com Print this Topic Previous Page Up One Level Next page

Home >  Configuring the Server > Setting up SSL Encryption >

Enabling SSL between FlowForce Web Server and FlowForce Server

You can enable SSL between FlowForce Web Server and FlowForce Server, by editing the .ini files of FlowForce Web Server and FlowForce Server, respectively. You can find both files in the data subdirectory of the FlowForce Server Application Data directory.

 

Do the following in the flowforce.ini file:

1.In the [ListenSSL] section, type values for the following parameters: ssl, active, host, port, for example:

 

[ListenSSL]
ssl=1
active=1
host=server.my.domain.com
port=4647

 

The ssl and active parameters must be set to 1 (enabled).
The host must correspond to a server name (or IP address, if applicable) that matches the Common Name of the SSL certificate used by FlowForce Server.
The port must be other than the default 4646 port used for unencrypted connections. For example, you can set it to 4647, if this port is not already in use.

 

2.In the [SSL] section, enter the path to the certificate and private key available for FlowForce Server. This is the same certificate and private key pair mentioned in Enabling SSL for FlowForce Server. For example:

 

[SSL]
certificate_chain=
certificate=C:\secure\flowforce.crt
private_key=C:\secure\flowforce.key

 

 

Do the following in the flowforceweb.ini file:

1.If it does not exist already, add a section called [FlowForce], and type values for the following three parameters: ssl, host, and port, for example:

 

[FlowForce]
ssl=1
host=server.my.domain.com
port=4647

 

The ssl parameter must be enabled (set to 1) for SSL connections to be enabled.
The host must be the same as the one in the "[ListenSSL]" section of the flowforce.ini file.
The host must correspond to a server name (or IP address, if applicable) that matches the Common Name of the SSL certificate available for FlowForce Server.
The port must be different from the default 4646 port used for unencrypted connections. Typically, this value is 4647.

 

Note:        After you finished editing the .ini files, restart both the FlowForce Server and the FlowForce Web Server services. For more information, see:

 

Starting and Stopping Services (Linux)
Starting and Stopping Services (macOS)
Starting and Stopping Services (Windows)

© 2019 Altova GmbH