Hyland Community
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Help me secure Alfresco (SSL)

newadmin
Champ in-the-making
Champ in-the-making

‎06-26-2012 12:29 PM

Hello all,

We've been using Alfresco in our environment for a while now and now want to make it accessible outside our network. Before we can do so we of course want to secure it with SSL. I've been looking at the instructions in the Alfresco documentation, but I'm a bit confused. I have imported the SSL certificate into a keystore with the alias tomcat.jks, but I cant quite figure out how to configure Alfresco.

In the documentation it says to add the following to the server.xml file:

<Connector port="8443" protocol="org.apache.coyote.http11.Http11Protocol" SSLEnabled="true"
               maxThreads="150" scheme="https" keystoreFile="../../data/keystore/ssl.keystore" keystorePass="kT9X6oe68t" keystoreType="JCEKS"
secure="true" connectionTimeout="240000" truststoreFile="../../data/keystore/ssl.truststore" truststorePass="kT9X6oe68t" truststoreType="JCEKS"
               clientAuth="false" sslProtocol="TLS" /> 

A few things I don't understand about this.

1) I don't know what a JECKS keystore type is, or how to figure out what kind of keystore I have.
2) I don't know what the truststore file is or how to use it. Should I leave these values at defaults or adjust them for my specific setup?

Any assistance you could provide would be appreciated. My installation is running on Windows 2008.

Thanks!
Labels:
0 Kudos
4 REPLIES 4

zaizi
Champ in-the-making
Champ in-the-making

‎06-27-2012 01:45 AM

What Alfresco documentation did you follow? Think you may have followed the documentation on how to encrypt communication between Alfresco and Solr.

To enable remote access to Alfresco via SSL, just look up documentation on how to enable SSL for Tomcat (version used in Alfresco) or what ever web server you are using to front end your Alfresco installation. http://tomcat.apache.org/tomcat-6.0-doc/ssl-howto.html

Ainga
0 Kudos

newadmin
Champ in-the-making
Champ in-the-making

‎06-28-2012 01:09 PM

What Alfresco documentation did you follow? Think you may have followed the documentation on how to encrypt communication between Alfresco and Solr.

To enable remote access to Alfresco via SSL, just look up documentation on how to enable SSL for Tomcat (version used in Alfresco) or what ever web server you are using to front end your Alfresco installation. http://tomcat.apache.org/tomcat-6.0-doc/ssl-howto.html

Ainga

You are right I was looking at the documentation for Solr and didn't realize it. Still I followed the tomcat documentation and still wasn't able to get it working. I've decided I'm going to move to Linux and use Apache as a front end, however that is proving to have it's challenges as well.
0 Kudos

mf_in_ffm
Champ in-the-making
Champ in-the-making

‎06-29-2012 03:03 AM

I'd like to suggest to you using Nginx instead of Apache as a proxy.
I've had a lot of trouble with the sharepoint protocol and there is no IMAP Proxy using Apache.
And Nginx it's pretty fast.
0 Kudos

kuldeep
Champ in-the-making
Champ in-the-making
In response to mf_in_ffm

‎03-23-2014 09:56 PM

Hi mf_in_ffm,

I too am using nginx as a proxy and am unable to get the shrepoint protocol working. Could you guide me what changes are needed?

My Alfresco installation is 4.2.D with default installation on port 8080 and 8443.

Thanks in advance

0 Kudos
Getting started

Tags

Find what you came for

We want to make your experience in Hyland Connect as valuable as possible, so we put together some helpful links.

Copyright © 2025 Khoros, LLC