tag:blogger.com,1999:blog-8014640383299816758.post1979348224734787219..comments2022-02-09T03:50:46.664-06:00Comments on Hyperion Virtuoso Blog: Securing your EPM Installation with SSL (OHS terminated configuration)Pablo Bryanhttp://www.blogger.com/profile/11344405625915338181noreply@blogger.comBlogger8125tag:blogger.com,1999:blog-8014640383299816758.post-41463364898240301142014-11-13T17:00:46.531-06:002014-11-13T17:00:46.531-06:00Thanks Pablo! It works fine!
atulThanks Pablo! It works fine!<br /><br />atulUnknownhttps://www.blogger.com/profile/03945877785269391680noreply@blogger.comtag:blogger.com,1999:blog-8014640383299816758.post-38811631096208942802014-10-10T13:09:28.041-05:002014-10-10T13:09:28.041-05:00Thanks Pablo - this was useful
Atul
atulrd65@gma...Thanks Pablo - this was useful<br /><br />Atul <br />atulrd65@gmail.comUnknownhttps://www.blogger.com/profile/03945877785269391680noreply@blogger.comtag:blogger.com,1999:blog-8014640383299816758.post-53231643467734541432014-07-29T15:30:45.094-05:002014-07-29T15:30:45.094-05:00Your steps are perfect. Tried it and it worked gr...Your steps are perfect. Tried it and it worked great. I do have a question. Now that HTTPS is enabled what is the preferred method of disabling HTTP? We do not want both protocols running.JPhttps://www.blogger.com/profile/16342853233971779754noreply@blogger.comtag:blogger.com,1999:blog-8014640383299816758.post-33954378635250297252014-06-12T13:47:48.927-05:002014-06-12T13:47:48.927-05:00If you look closely to the ssl.conf file you will ...If you look closely to the ssl.conf file you will see at the beginning of the SSL section that there is a ListenPort directive with the port you want to listen on. You can change that to whichever port you need to listen on.Pablo Bryanhttps://www.blogger.com/profile/11344405625915338181noreply@blogger.comtag:blogger.com,1999:blog-8014640383299816758.post-8669331514939109762014-06-12T13:45:06.622-05:002014-06-12T13:45:06.622-05:00Yes, you should be able to only enable SSL on OHS ...Yes, you should be able to only enable SSL on OHS and communicate via 443 to end users and then open the WL ports with the OHS IP address as source on the WL servers and communicate openly (http). No need to configure SSL on Weblogic if it isn't required, however if you want to do a full SSL configuration you will need to configure SSL on the WL servers as well. Maybe I'll blog about that next :)Pablo Bryanhttps://www.blogger.com/profile/11344405625915338181noreply@blogger.comtag:blogger.com,1999:blog-8014640383299816758.post-72613279138375963152014-06-12T13:11:43.421-05:002014-06-12T13:11:43.421-05:00Do you need to make any entry related to the port?...Do you need to make any entry related to the port?Anonymousnoreply@blogger.comtag:blogger.com,1999:blog-8014640383299816758.post-59605748967389021232014-06-09T20:44:46.669-05:002014-06-09T20:44:46.669-05:00This is very useful.
I do have a couple of questi...This is very useful.<br /><br />I do have a couple of questions.<br /><br />1. Is this all that needs to be configured? No changes on Weblogic or Hyperion side?<br />2. I have a configuration with OHS, Weblogic and Hyperion all on the same server. We require SSL. But, we do not have any external users. So, we have no OHS sitting outside the firewall. Everything is inside the firewall. Can we use the same setup as you have indicated?JPhttps://www.blogger.com/profile/16342853233971779754noreply@blogger.comtag:blogger.com,1999:blog-8014640383299816758.post-72331056295372430152014-06-09T20:35:58.156-05:002014-06-09T20:35:58.156-05:00Very good post.
Do you have to make any changes t...Very good post.<br /><br />Do you have to make any changes to Weblogic or Hyperion for this to work? Is the only change done on the OHS side?<br /><br />Also will this same configuration work with the following.<br /><br />OHS/Weblogic and Hyperion are all installed on same server. No external configuration/access. But we must have SSL configured. So, no OHS outside the firewall everything is inside.JPhttps://www.blogger.com/profile/16342853233971779754noreply@blogger.com