DX NetOps Manager

Spec KB: How to enable ModSecurity in SSL mode reusing existing digital certificate used for Spectrum Tomcat

  • 1.  Spec KB: How to enable ModSecurity in SSL mode reusing existing digital certificate used for Spectrum Tomcat

    Posted 06-28-2016 01:11 AM

    Spec KB: How to enable ModSecurity in SSL mode reusing existing digital certificate used for Spectrum Tomcat

    Document ID:  TEC1911552

    ShowHide Technical Document Details

    • Products
      • CA Spectrum
    • Releases
      • CA Spectrum:Release:10.1
    • Components
      • OneClick / Apache HTTP Server

    ISSUE: Starting from Spectrum 10.1 onward we can enable ModSecurity Web Application Firewall in Spectrum to prevent malicious remote clients from accessing OneClick Server (Tomcat). Some of you may have configured Tomcat in SSL before we have this feature. In this case, if you want to utilize this ModSecurity feature for improved security, that naturally means that you want to configure ModSecurity in SSL mode reusing existing digital certificate on the OneClick Server. This article explains how you can migrate digital certificate for Tomcat to be reusable for Apache HTTP server where ModSecurity is implemented.

     

    Knowledge Document Link:

     

    http://www.ca.com/us/support/ca-support-online/product-content/knowledgebase-articles/tec1911552.aspx