Enable the SSL Accelerator option

An SSL Accelerator (or SSL Terminator) strips off HTTPS encryption at or before the Web server tier in a multi-tier setup. When using an SSL Accelerator with WebSphere Commerce, use the SSL Accelerator option to configure WebSphere Commerce to correctly receive requests that require redirects.

1. Open the WebSphere Commerce configuration file.

2. Add the following attributes to the WebServer configuration node

   <WebServer ...
           ...
           SSLAcceleratorOption="Enabled"
           inSSLPort="443"
           inNonSSLPort="80"
           outSSLPort="443"
           outNonSSLPort="80"
           ... 
   ... > 
   
   
   

   Where:

   inSSLPort

   The port configured for WebSphere Commerce to receive the SSL data. WebSphere Commerce will treat any data received on this port as SSL data even if the scheme says http. The default is port 443.

   inNonSSLPort

   The port configured for WebSphere Commerce to receive the non-SSL data. WebSphere Commerce will treat any data received on this port as non-SSL data. The default port is 80.

   outSSLPort

   The port that WebSphere Commerce will use to send out SSL data on a redirect. The default port is 443.

   outNonSSLPort

   The port that WebSphere Commerce will use to send out non-SSL data on a redirect. The default port is 80.

3. Propagate the changes to the WebSphere Commerce configuration file.

4. Start your WebSphere Commerce instance if it is not already started.

5. Run the following command:

   WC_installdir/bin/config_ant.sh -DinstanceName=instance UpdateEAR

   • Windows: WC_installdir/bin/config_ant.bat -DinstanceName=instance UpdateEAR

6. Restart your WebSphere Commerce instance.

7. Disable SSL for those ports that no longer need SSL. To do this, edit the Web server configuration. For example, if you're using an SSL Accelerator for the Stores Web module, disable SSL for port 443. For the IBM HTTP Server, remove the following directives from the host_name:443 VirtualHost

   SSLEnable
   SSLClientAuth 0
   
   
   

8. Set the Application Server port preference:

   1. Open the WAS Administrative Console.

   2. Expand Servers.

   3. Click on Web Servers.

   4. Click on webserver1 (or the Web Server associated with your WebSphere Commerce application).

   5. Click on Plug-in properties.

   6. Click on Request and Response.

   7. For the Application server port preference field, select Webserver port

   8. Click OK.

   9. Save the configuration.

   10. Regenerate the Web server plug-in configuration file.

9. Restart the Web server that WebSphere Commerce is running on.

 

Related Concepts

Authorization

 

Related tasks

Enhancing site security