Enable Enterprise Console HTTPS for Fresh Installation

You can enable HTTPS during the Enterprise Console installation by selecting HTTPS as your preferred connection type:

  1. Follow the steps to install the Enterprise Console:

    • For GUI Installation, click the HTTPS checkbox.

      Warning: If the checkbox is left unselected, then the installation will default to HTTP.

      The Enterprise Console will create a self-signed certificate and use it for your HTTPS connection.

    • For Silent Installation, edit the platform admin response varfile with the following parameter:

      platformAdmin.useHttps$Boolean=true

      This enables HTTPS connection and is the same as checking Enable Https Connection in the wizard installation option. Setting the parameter to false uses HTTP.

  2. Optional: The Enterprise Console will create a self-signed certificate and use it for HTTPS connection. You can replace it with a certificate signed by a third-party CA. See Update to a Signed Certificate.
The Enterprise Console then configures the HTTPS protocol and disables HTTP in the Dropwizard configuration file, PlatformAdminApplication.yml. See the Dropwizard Configuration Reference for more information. Example Enterprise Console HTTPS connector configuration:
server:
type: simple
connector:
type: encrypted-https # encrypted-https is a customized HTTPS connector type in Enterprise Console, with keystore password encrypted.
port: 9191 # DO NOT REMOVE alternatives are 8080
keyStorePath: /appdynamics/platform-admin/conf/keys/keystore.jks
keyStorePassword: s_-001-12-v/yKyIweuGQ=iLpBEDTqfP7vj++WP+MKEg==
trustStorePath: /appdynamics/platform-admin/conf/keys/cacerts.jks
trustStorePassword: s_-001-12-hdLwJEOZbns=kDmS/pLvq2A43iCWLJEcTg==
certAlias: ec-server # DO NOT change cert alias name in keystore files.
validateCerts: false
supportedProtocols: [TLSv1.2]
bindHost: 0.0.0.0
applicationContextPath: /
Note: The Enterprise Console encrypts all plain text passwords in the configuration file.