Verify the Use of SSL

To make sure the configuration works, use a browser to connect to the Controller over the default secure port, port 8181:

https: //<controller_host>:8181/controller

Make sure the Controller entry page loads in the browser correctly. Also, verify that the browser indicates a secure connection. Most browsers display a lock icon next to the URL to indicate a secure connection.

After changing the certificate on the Controller, you will need to import the public key of the certificate to the agent truststore. For information on how to do this, see the topic specific for the agent type:

If there is no proxy configured and the agent is reporting to the Controller itself, then the following changes are also mandatory:

  1. Run the following command:
    platform-admin.sh stop-controller-appserver
    On Windows, run this command from an elevated command prompt (which you can open by right-clicking on the Command Prompt icon in the Windows Start menu and choosing Run as administrator): 
    platform-admin.exe cli stop-controller-appserver
  2. Search for the following properties in <controller_home>/appserver/jetty/start.d/start.ini, and replace the port with the SSL port, as the non-secure port is disabled:
    -Dappdynamics.controller.port=
-Dappdynamics.controller.services.port=
  3. In the following property, change the protocol from HTTP to HTTPS, and change the port to the secure port.You can also use REST API to update the deeplink URL: 
    - Dappdynamics.controller.ui.deeplink.url=
    curl -k --basic --user root@system --header "Content-Type: application/json" --data '
{ "controllerURL": "https://<controller>:<ssl_port>" }' https://<controller>:<ssl_port>/controller/rest/accounts/<ACCOUNT-NAME>/update-controller-url
  4. Add the following JVM argument anywhere above or below the above JVM arguments to ensure the internal agent connects using SSL. 
    -Dappdynamics.controller.ssl.enabled=true
  5. Run the following command:
    platform-admin.sh start-controller-appserver

    On Windows, run the following in an elevated command prompt:

    platform-admin.exe cli start-controller-appserver
You can also use the modifyJVMOptions.sh script to make the changes.