Apache Web Server System Description

Apache Web Server System Description Version 2.x 2011-01-13 SEAL Systems

Copyright This document and all its parts are protected by copyright. Their use without prior written consent by SEAL Systems is prohibited and subject to prosecution. In particular, this applies to reproduction, translation, microfilming and the storing and processing in electronic systems. Customers that currently own a valid SEAL Systems software license for the product(s) described within the contents of this documentation, may freely distribute this documentation in electronic form (e. g. CD/file server or intranet) for internal usage only. All product names mentioned are the registered trademarks of the associated companies. Copyright 2011 SEAL Systems AG Lohmühlweg 4 D91341 Röttenbach Germany

Contents 3 Contents 1 Introduction... 5 Conventions in this Documentation... 6 Overview of Contents... 7 2 Configuration of Port Number... 8 Configure the Port Number (DPF Director)... 9 Configure the Port Number (PLOSSYS OCON)... 10 Configure the Port Number (Other SEAL Systems Products)... 11 3 Change to Secure Connection... 12 Request an SSL Certificate... 13 Change to HTTPS (DPF Director)... 14 Change to HTTPS (PLOSSYS OCON)... 15 Change to HTTPS (Other SEAL Systems Products)... 16 Change to HTTPS and HTTP (Other SEAL Systems Products)... 17 Accept SSL Certificate in the Web Browser... 18 Call Client Via Secure Connection (HTTPS)... 21 Bibliography... 22 Terminology... 23 Abbreviations... 24 Index... 25 SEAL Systems 2008-09-09 Base Configuration of DMS Modules www.sealsystems.com Version 1.2.4 System Description

4 Contents Base Configuration of DMS Modules 2008-09-09 SEAL Systems System Description Version 1.2.4 www.sealsystems.com

1 Introduction 5 1 Introduction This documentation describes the configuration of the Apache Web Servers in the installations of SEAL Systems. This documentation is intended for use by both system administrators and Technical Project Managers at SEAL Systems who want to customize the configuration of the Apache Web Server. The following Apache Web Servers can be available in the installations of SEAL Systems: Apache for DPF Tracker, PLOSSYS Webclient, PLOSSYS Webportal and SEAL Control Center ApacheDire for DPF Director ApacheOcon for PLOSSYS OCON For more information about the specific products from SEAL Systems, refer to the correspondent product documentations. This chapter deals with the following topics: purpose target group available Apache Web Servers reference in this chapter Topic Page Conventions in this Documentation 6 Overview of Contents 7 SEAL Systems 2011-01-13 Apache Web Server www.sealsystems.com Version 2.x System Description

6 1 Introduction Conventions in this Documentation path specification typography The path information given in this documentation is relative to the installation directory of PLOSSYS netdome. This is usually the home directory of the plossys user. The path information is indicated in Windows notation only in most cases. This corresponds to the UNIX directory structures unless noted otherwise. The following table lists the typographical conventions employed in this documentation for file names, paths, variables, etc. Typographical Convention Courier Courier italic Courier small Meaning File names, paths, commands, menu items, keywords, special values, short scripts and examples Parameters; variables that must be replaced by current values More extensive scripts and examples Apache Web Server 2011-01-13 SEAL Systems System Description Version 2.x www.sealsystems.com

1 Introduction 7 Overview of Contents The documentation deals with the following topics: Chapter 2, Configuration of Port Number, page 8, describes how you configure the port numbers for the different Apache Web Servers. Chapter 3, Change to Secure Connection, page 12, describes how you change the different Apache Web Servers to HTTPS. At the end of the documentation, a bibliography, terminology list, abbreviation list, keyword list and index are included. Content lists SEAL Systems 2011-01-13 Apache Web Server www.sealsystems.com Version 2.x System Description

8 2 Configuration of Port Number 2 Configuration of Port Number in this chapter This chapter deals with the following topics: Topic Page Configure the Port Number (DPF Director) 9 Configure the Port Number (PLOSSYS OCON) 10 Configure the Port Number (Other SEAL Systems Products) 11 reference Which port numbers are used for which purposes in SEAL Systems products by default is described in [PORTNUMBERS_TEC]. Apache Web Server 2011-01-13 SEAL Systems System Description Version 2.x www.sealsystems.com

2 Configuration of Port Number 9 Configure the Port Number (DPF Director) This is how you configure the port number for the Apache Web Server for DPF Director: instructions Step Action 1 Stop the DPF Director server with sysstop director. 2 Call ddinst and enter the desired port number at Please specify Webport. 3 Start the DPF Director server with sysstart director. The DPF Director client can connect to the server with the Web port number. Which port number has been used when starting the Apache Web Server for DPF Director, is displayed with sysstart director and with sysstatus director. ddinst is also called after answering y to Execute DPF Director configuration? in setplossyscfg. result hint hint SEAL Systems 2011-01-13 Apache Web Server www.sealsystems.com Version 2.x System Description

10 2 Configuration of Port Number Configure the Port Number (PLOSSYS OCON) instructions This is how you configure the port number for the Apache Web Server for PLOSSYS OCON: Step Action 1 Stop the PLOSSYS OCON server with sysstop ocon. 2 Call oconinst and enter the desired port number at Please specify Webport. 3 Start the PLOSSYS OCON server with sysstart ocon. result hint hint The PLOSSYS OCON client can connect to the server with the Web port number. Which port number has been used when starting the Apache Web Server for PLOSSYS OCON, is displayed with sysstart ocon and with sysstatus ocon. oconinst is also called after answering y to Execute PLOSSYS OCON configuration? in setplossyscfg. Apache Web Server 2011-01-13 SEAL Systems System Description Version 2.x www.sealsystems.com

2 Configuration of Port Number 11 Configure the Port Number (Other SEAL Systems Products) This is how you configure the port number for the Apache Web Server for DPF Tracker, PLOSSYS Webclient, PLOSSYS Webportal and SEAL Control Center:: instructions Step Action 1 Stop the Apache Web Server with sysstop apache. 2 Call setplossyscfg and specify y at Configure Apache Web server (for PLOSSYS Webclient, PLOSSYS Webportal, DPF Tracker, SEALCC)?. 3 Enter the desired Web port number at Please enter value for WEBPORT. 4 If you are using both the secure (HTTPS) and the open (HTTP) connection, enter the desired HTTPS port number at Enter the SSL port (Secure connection). 5 Start the Apache Web Server with sysstart apache. DPF Tracker, PLOSSYS Webclient, PLOSSYS Webportal and SEAL Control Center can connect to the server with the Web port number and, if configured, with the HTTPS port number. Which port number has been used when starting the Apache Web Server, is displayed with sysstart apache and with sysstatus apache. result hint SEAL Systems 2011-01-13 Apache Web Server www.sealsystems.com Version 2.x System Description

12 3 Change to Secure Connection 3 Change to Secure Connection HTTP/HTTPS SSL certificate hint in this chapter An Apache Web Server can be configured with an open port (HTTP) and/or a secure port (HTTPS). For the secure connection, you need an SSL certificate. An Apache Web Server with a secure port requires more computing time than one with an open port. This chapter deals with the following topics: Topic Page Request an SSL Certificate 13 Change to HTTPS (DPF Director) 14 Change to HTTPS (PLOSSYS OCON) 15 Change to HTTPS (Other SEAL Systems Products) 16 Change to HTTPS and HTTP (Other SEAL Systems Products) 17 Accept SSL Certificate in the Web Browser 18 Call Client Via Secure Connection (HTTPS) 21 Apache Web Server 2011-01-13 SEAL Systems System Description Version 2.x www.sealsystems.com

3 Change to Secure Connection 13 Request an SSL Certificate On request, you receive the SSL certificate from your Technical Project Manager at SEAL Systems. Give the following information to SEAL Systems: Company Department City Country Country token according to ISO Name of the server where the Web server is running E-mail address of the contact person Validity period of the certificate The SSL certificate consists of the name.crt and name.key files. SEAL Systems required information SSL certificate SEAL Systems 2011-01-13 Apache Web Server www.sealsystems.com Version 2.x System Description

14 3 Change to Secure Connection Change to HTTPS (DPF Director) instructions This is how you change the Apache Web Server for DPF Director to the secure connection (HTTPS): Step Procedure 1 Stop the DPF Director server with sysstop director. 2 Copy the certification files, name.crt and name.key, to the server\director\apache\conf\ssl directory on the server where the Apache Web Server for DPF Director is running. 3 Rename the files to seal.crt and seal.key. 4 Start the DPF Director server with sysstart director. result hint hint The DPF Director client can connect to the DPF Director server with https:// host:web_port only. In order to change the Apache Web Server for DPF Director back to HTTP, stop the DPF Director server, delete the two certificate files, seal.crt and seal.key (or rename them to seal.crtoff and seal.keyoff for example) and restart the DPF Director server. If the Apache Web Server for DPF Director has been started in the secure or in the open mode, is displayed with sysstart director and with sysstatus director. Apache Web Server 2011-01-13 SEAL Systems System Description Version 2.x www.sealsystems.com

3 Change to Secure Connection 15 Change to HTTPS (PLOSSYS OCON) This is how you change the Apache Web Server for PLOSSYS OCON to the secure connection (HTTPS): instructions Step Procedure 1 Stop the PLOSSYS OCON server with sysstop ocon. 2 Copy the certification files, name.crt and name.key, to the server\ocon\apache\conf\ssl directory on the server where the Apache Web Server for PLOSSYS OCON is running. 3 Rename the files to seal.crt and seal.key. 4 Start the PLOSSYS OCON server with sysstart ocon. The PLOSSYS OCON client can connect to the PLOSSYS OCON server with https://host:web_port only. In order to change the Apache Web Server for PLOSSYS OCON back to HTTP, stop the PLOSSYS OCON server, delete the two certificate files, seal.crt and seal.key (or rename them to seal.crtoff and seal.keyoff for example) and restart the PLOSSYS OCON server. If the Apache Web Server for PLOSSYS OCON has been started in the secure or in the open mode, is displayed with sysstart ocon and with sysstatus ocon. result hint hint SEAL Systems 2011-01-13 Apache Web Server www.sealsystems.com Version 2.x System Description

16 3 Change to Secure Connection Change to HTTPS (Other SEAL Systems Products) instructions This is how you change the Apache Web Server for DPF Tracker, PLOSSYS Webclient, PLOSSYS Webportal and SEAL Control Center to the secure connection (HTTPS): Step Procedure 1 Stop the Apache Web Server with sysstop apache. 2 Call setplossyscfg and specify y at Configure Apache Web server (for PLOSSYS Webclient, PLOSSYS Webportal, DPF Tracker, SEALCC)?. 3 Specify y at Should the Web server support the secure HTTPS protocol?. 4 Specify the name of the SSL certificate file,.crt, at Enter the SSL certificate file. 5 Specify y at Allow access via HTTPS only?. 6 Start the Apache Web Server with sysstart apache. result hint hint DPF Tracker, PLOSSYS Webclient, PLOSSYS Webportal and SEAL Control Center can connect to the server with https://host:web_port only. In order to change the Apache Web Server back to HTTP, open the configuration of Apache Web Server in setplossyscfg again and specify n at Should the Web server support the secure HTTPS protocol?. If the Apache Web Server has been started in the secure or in the open mode, is displayed with sysstart apache and with sysstatus apache. Apache Web Server 2011-01-13 SEAL Systems System Description Version 2.x www.sealsystems.com

3 Change to Secure Connection 17 Change to HTTPS and HTTP (Other SEAL Systems Products) This is how you change the Apache Web Server for DPF Tracker, PLOSSYS Webclient, PLOSSYS Webportal and SEAL Control Center to the open (HTTP) and the secure connections (HTTPS): instructions Step Procedure 1 Stop the Apache Web Server with sysstop apache. 2 Call setplossyscfg and specify y at Configure Apache Web server (for PLOSSYS Webclient, PLOSSYS Webportal, DPF Tracker, SEALCC)?. 3 Specify y at Should the Web server support the secure HTTPS protocol?. 4 Specify the name of the SSL certificate file,.crt, at Enter the SSL certificate file. 5 Specify n at Allow access via HTTPS only?. 6 Specify the port for the secure connection via HTTPS at Enter the SSL port (secure connection). 7 Start the Apache Web Server with sysstart apache. DPF Tracker, PLOSSYS Webclient, PLOSSYS Webportal and SEAL Control Center can connect to the server with the secure connection, https:// host:ssl_port, or the open connection, http://host:web_port. If the Apache Web Server has been started in the secure and/or in the open mode, is displayed with sysstart apache and with sysstatus apache. result hint SEAL Systems 2011-01-13 Apache Web Server www.sealsystems.com Version 2.x System Description

18 3 Change to Secure Connection Accept SSL Certificate in the Web Browser instructions This is how you accept the SSL certificate in the Web browser: Step Procedure 1 In the Web browser, call https://host:web_port. 2 Follow the instructions in the Web browser in order to import the SSL certificate and to accept it. example This is how you accept the SSL certificate in Mozilla Firefox:...To be continued Apache Web Server 2011-01-13 SEAL Systems System Description Version 2.x www.sealsystems.com

3 Change to Secure Connection 19 Accept SSL Certificate in the Web Browser, Continuation example, continuation... To be continued SEAL Systems 2011-01-13 Apache Web Server www.sealsystems.com Version 2.x System Description

20 3 Change to Secure Connection example, continuation Accept SSL Certificate in the Web Browser, Continuation Apache Web Server 2011-01-13 SEAL Systems System Description Version 2.x www.sealsystems.com

3 Change to Secure Connection 21 Call Client Via Secure Connection (HTTPS) In the URL of the client, specify https://host:ssl_port instead of http:// host:web_port. URL SEAL Systems 2011-01-13 Apache Web Server www.sealsystems.com Version 2.x System Description

22 Bibliography Bibliography... [DPF_TEC] [NETDOME_TEC] [NWC_INS] [OCON_INS] [PORTNUMBERS_TEC] [SEALCC_TEC] [SYSTEMSTATUS_TEC] [WEBPORTAL_TEC] DPF, System Description, SEAL Systems PLOSSYS netdome, System Description, SEAL Systems NWC, Installation Guide, SEAL Systems PLOSSYS OCON, Installation Guide, SEAL Systems Port Numbers at SEAL Systems, System Description, SEAL Systems SEAL Control Center, System Description, SEAL Systems System Status, System Description, SEAL Systems PLOSSYS Webportal, System Description, SEAL Systems... Apache Web Server 2011-01-13 SEAL Systems System Description Version 2.x www.sealsystems.com

Terminology 23 Terminology... The following section explains the most important terms that are used in this documentation. Terms marked by refer to other terms within this section. Apache Web server for PLOSSYS OCON, DPF Director, DPF Tracker, PLOSSYS Webclient, PLOSSYS Webportal and SEAL Control Center DPF Director Graphical user interface for editing and generating working units and processes in the DPF system DPF Director client DPF Director's user interface DPF Director s user interface Graphical user interface of DPF Director; communicates with the DPF Director server DPF Director server Communicates with the DPF Director s user interface and the DPF system; contains the Apache Web server and the Tomcat server DPF Tracker Graphical user interface for tracking jobs in a DPF system PLOSSYS OCON Administrator and operator console providing functionality to administrate output devices, jobs and stations of PLOSSYS netdome systems PLOSSYS OCON client PLOSSYS OCON s user interface PLOSSYS OCON s User Interface Graphical user interface of PLOSSYS OCON; communicates with the PLOSSYS OCON server PLOSSYS OCON server Communicates with the PLOSSYS OCON s user interface and PLOSSYS Infoserver of the PLOSSYS netdome systems; contains the Apache Web server and the Tomcat server PLOSSYS Webclient Client for archive, output and user functions PLOSSYS Webportal Electronic data distribution via a Web server SEAL Control Center Central, web-based user interface in plug-in technology for administrating SEAL Systems applications easily Servlet Java program which runs on the Web server Tomcat A servlet engine Web server Communication server based on Web technology... SEAL Systems 2011-01-13 Apache Web Server www.sealsystems.com Version 2.x System Description

24 Abbreviations Abbreviations... DPF HTTP HTTPS NWC PLOSSYS SEALCC SSL Digital Process Factory from SEAL Systems Hypertext Transfer Protocol Hypertext Transfer Protocol Secure PLOSSYS Webclient Product family by SEAL Systems SEAL Control Center from SEAL Systems Secure Sockets Layer... Apache Web Server 2011-01-13 SEAL Systems System Description Version 2.x www.sealsystems.com

Index 25 Index Symbols.crt 13.key 13 A Apache 5, 23 Apache Web server available 5 open connection 12 secure connection 12 ApacheDire 5 ApacheOcon 5 available Apache Web servers 5 C call client via secure connection 21 certificate accept 18 files 13, 14 for secure connection 12 request 13 server 13 validity period 13 connection for DPF Director, view 14 for DPF Tracker, view 16 for PLOSSYS OCON, view 15 for PLOSSYS Webclient, view 16 for PLOSSYS Webportal, view 16 for SEAL Control Center, view 16 D ddinst 9 default port number 8 DPF Director 5, 23 configure port number 9 configure secure connection 14 secure connection 14 view connection 14 view port number 9 DPF Director client, see DPF Director's user interface DPF Director server 23 DPF Director s user interface 23 DPF Tracker 5, 23 configure port number 11 configure secure and open connection 17 configure secure connection 16 secure connection 16 view connection 16 view port number 11 H HTTP 24 HTTP, see also open connection HTTPS 24 HTTPS port number 11 HTTPS, see also secure connection N NWC 24 O oconinst 10 open connection 12 P PLOSSYS OCON 5, 23 configure port number 10 configure secure connection 15 secure connection 15 view connection 15 view port number 10 PLOSSYS OCON client, see PLOSSYS OCON's user interface PLOSSYS OCON server 23 PLOSSYS OCON s user interface 23 PLOSSYS Webclient 5, 23 configure port number 11 configure secure and open connection 17 configure secure connection 16 secure connection 16 view connection 16 view port number 11 PLOSSYS Webportal 5, 23 configure port number 11 configure secure and open connection 17 configure secure connection 16 secure connection 16 view connection 16 view port number 11 port number default 8 for DPF Director, configure 9 for DPF Director, view 9 for DPF Tracker, configure 11 for DPF Tracker, view 11 for PLOSSYS OCON, configure 10 for PLOSSYS OCON, view 10 SEAL Systems 2008-01-01 PLOSSYS netdome www.sealsystems.com Version 1.0.0 User Manual

26 Index for PLOSSYS Webclient, configure 11 for PLOSSYS Webclient, view 11 for PLOSSYS Webportal, configure 11 for PLOSSYS Webportal, view 11 for SEAL Control Center, configure 11 for SEAL Control Center, view 11 W Web browser, accept certificate 18 Web port number 11 Web server 23 S SEAL Control Center 5, 23 configure port number 11 configure secure and open connection 17 configure secure connection 16 deactivate secure connection 16 view connection 16 view port number 11 SEAL Systems product, default port numbers in 8 SEALCC 24 secure and open connection for DPF Tracker, configure 17 for PLOSSYS Webclient, configure 17 for PLOSSYS Webportal, configure 17 for SEAL Control Center, configure 17 secure connection 12 accept certificate 18 call client via 21 certificate 12 for DPF Director, configure 14 for DPF Director, deactivate 14 for DPF Tracker, configure 16 for DPF Tracker, deactivate 16 for PLOSSYS OCON, configure 15 for PLOSSYS OCON, deactivate 15 for PLOSSYS Webclient, configure 16 for PLOSSYS Webclient, deactivate 16 for PLOSSYS Webportal, configure 16 for PLOSSYS Webportal, deactivate 16 for SEAL Control Center, configure 16 for SEAL Control Center, deactivate 16 request certificate 13 server of certificate 13 servlet 23 setplossyscfg 9, 10 SSL 24 SSL certificate, see certificate SSL port number 17 T Tomcat 23 V validity period of certificate 13 PLOSSYS netdome 2008-01-01 SEAL Systems User Manual Version 1.0.0 www.sealsystems.com