Send documentation comments to mdsfeedback-doc@cisco.com.
5-6
Cisco MDS 9000 Family Fabric Manager Configuration Guide
OL-6965-03, Cisco MDS SAN-OS Release 2.x
Chapter 5 Fabric Manager Web Services
Installing Fabric Manager Web Services

Using Fabric Manager Web Services with SSL

Fabric Manager Web Services uses TCP port 80 by default. If you want to install SSL certificates and
use Fabric Manager Web Services over HTTPS (using TCP port 443 or another custom port), you need
a certificate for each external IP address that accepts secure connections. You can purchase these
certificates from a well-known Certificate Authority (CA).
To modify Fabric Manager Web Services to use SSL, follow these steps:
Step 1 Stop Fabric Manager Web Services if you have already launched it. If you installed this on Windows,
you can stop the service using Windows Services under Administrative Tools.
Step 2 Open \tomcat\conf\server.xml from the directory that you installed Fabric Manager Web Services, using
a text editor. You see the following lines in the beginning after some copyright information.:
<Connector className="org.apache.catalina.connector.http.HttpConnector"
port="80" minProcessors="5" maxProcessors="75"
enableLookups="false" redirectPort="8443"
acceptCount="10" debug="0" connectionTimeout="60000"/>
<!-- Define an SSL HTTP/1.1 Connector on port 8443 -->
<!--
<Connector className="org.apache.catalina.connector.http.HttpConnector"
port="8443" minProcessors="5" maxProcessors="75"
enableLookups="true"
acceptCount="10" debug="0" scheme="https" secure="true">
<Factory className="org.apache.catalina.net.SSLServerSocketFactory"
clientAuth="false" protocol="TLS"/>
</Connector>
-->
Step 3 Comment the first <Connector> element and uncomment the second one. Note that changes in port from
8443 to 443 and the addition of keystore and keypass. Your file should look like the following example:
<!--
<Connector className="org.apache.catalina.connector.http.HttpConnector"
port="80" minProcessors="5" maxProcessors="75"
enableLookups="false" redirectPort="8443"
acceptCount="10" debug="0" connectionTimeout="60000"/>
-->
<!-- Define an SSL HTTP/1.1 Connector on port 8443 -->
<Connector className="org.apache.catalina.connector.http.HttpConnector"
port="443" minProcessors="5" maxProcessors="75"
enableLookups="true"
acceptCount="10" debug="0" scheme="https" secure="true">
<Factory className="org.apache.catalina.net.SSLServerSocketFactory"
clientAuth="false" protocol="TLS"
keystoreFile="C:\Program Files\Cisco Systems\MDS 9000\keystore"
keystorePass="changeit"/>
</Connector>
Step 4 Save this file.
Step 5 Restart Fabric Manager Web Services.