Can CA ITPAM as any web application work in both secured and non-secured mode for both user interface and web services? And if it's not possible, is switching between the secured and non-secured mode as simple as changing properly the file server.xml in the "server\c2o\deploy\jbossweb.sar" folder, or should I change another file also like web.xml?
Thanks in advance.
To use the User Interface in secured mode you would need to run through the install of PAM and select https communication. The settings are stored in the OasisConfig.properties file for the path to the keystore and the encrypted password.
For Web Services, each web service operator has a tab called "WS Security" where you can specify encryption information.
Thank you Andrew for you response.
During the installation of CAITPAM, I've unchecked the secured mode. So after the installation, I was accessing the application via http://localhost:8090/itpam/Web.jsp
After that, I wanted to enable the secured mode, so I've generated the corresponding certificates and updated the correspondign files like OasisConfig.properties and server.xml. It's worked perfectly fine and now I'm accessing the application user interface via https://localhost:8443/itpam/Web.jsp
My question is: is it possible to modify the corresponding files so I can access both endpoints the SSL and the non-SSL one? because I'm having trouble going back to the non-SSL one.
I'm not clear about the question: is it possible to modify the corresponding files so I can access both endpoints the SSL and the non-SSL one?
Do you mean, you want to access PAM with SSL and non-SSL, then its not possible. You can install PAM either SSL or non-SSL.
And please don't modify the OasisConfig.properties and server.xml directly, instead reinstall PAM to select the secured mode.