How can we help you?
Manage your default ports and HTTP protocols
The Deployment Monitoring Console (DMC) allows you to manage and modify your default ports to meet your workplace protocols whenever you want.
Uses
Users typically manage and modify default ports when they work in an environment with IT policies that determine how traffic is handled on internal networks, and the default port setup needs to be modified to meet those needs. Users can also modify their ports when they want to have the Datical web server listen to specific ports.
Manage and modify your default ports
To manage and modify your existing ports:
- Open cluster.properties under
<install_dir>/config/
. - Add
datical.server.proxy.enabled=false
.
Add the following settings to the /opt/datical/datical-service/config/application.properties
file:
datical.server.https.port=2445
.datical.server.https.externalPort=2445
.datical.server.http.port=4455
.datical.server.http.externalPort=4455
.
Note: Ports 2445 and 4455 can be any unused port number on the DMC host. The maximum port number is 65535.
- Restart
datical-proxy
using commandsudo service datical-proxy restart
. - Restart
datical-service
using commandsudo service datical-service restart
. - Navigate to
https://host_name:2445
.
Enable the HTTP Protocol
By default, the DMC supports the HTTPS protocol. Currently, If you navigate to the HTTP protocol, it will redirect to HTTPS.
To change the default to support HTTP in addition to HTTPS, complete the following steps:
- Create application.properties files under ,
<INSTALL_DIR>/datical-service/config/
- Add the following property:
datical.server.https.required=false
to the file.Example:
sudo echo "datical.server.https.required=false" > /opt/datical/datical-service/config/application.properties
- Restart the
datical-proxy
using the following command:sudo service datical-proxy restart
. - Next, restart the
datical-service
using the following command:sudo service datical-service restart
. - Open the DMC UI using HTTPS in the url and log in.
- Log out of the DMC UI.
- Open the DMC UI using HTTP in the url and log in.
- Log out of the DMC UI.
- Check
datical-service
withhttp://host_name
.
Note: HTTP is an unsecured protocol. HTTPS is recommended.
DMC behind a Load Balancer
The DMC can be placed behind a load balancer. To configure the load balancer complete the following steps:
- Create a listener on the load balancer for either HTTPS(443) or HTTP(80)
- Set the target for the load balancer to be the hostname or IP of the DMC on the same corresponding port.
Enable HTTP Options for DMC
You can use the HTTP OPTIONS
method to administer DMC and initiate a client-server connection. However, as a security precaution, the HTTP OPTIONS
method is disabled for DMC by default. If your internal monitoring software or other tools rely on the DMC HTTP OPTIONS
method to work with your internal systems, and you need to enable HTTP OPTIONS
, follow these steps:
- On your DMC server, open or create the file:
<DATICAL_SERVICE_INSTALL_FOLDER>/datical-service/config/application.properties
. - Add the setting to enable the
HTTP OPTIONS
method:datical.options-request-disabled=false
and save your changes. - Restart
datical-proxy
using the following command: - Restart
datical-service
using the following command: - Check
datical-service
withhttp://host_name
.
sudo service datical-proxy restart
sudo service datical-service restart
Obtain and Import a Certificate Signed by a Certificate Authority
This section covers how to use a certificate signed by a Certificate Authority to secure data transmitted between the server and the browser, which is a two step process as follows:
Step 1: Submitting a Certificate Signing Request to the Certificate Authority
To generate a certificate signing request:
- Start a terminal session on the server where DMC is installed
- Run the following command:
datical-control https generate-signing-request --output <path/to/file.csr>
# Example:
datical-control https generate-signing-request --output /tmp/certificate.csr
- Copy the
certificate.csr
file to a system with internet access (if necessary) - Upload the CSR to the Certificate Authority used by your organization
The Certificate Authority will confirm the identity of your organization and the authenticity of your request. Once that process completes, you will be able to download a new certificate specific to your DMC server.
Step 2: Importing the Certificate into the DMC Installation
Once the Certificate Authority issues the certificate based on your certificate request, follow the steps below to import that certificate into your DMC installation:
- Download Signed Certificate in .pem or .p7b format
- Copy the Signed Certificate to the server where DMC is installed
- Start a terminal session on the server where DMC is installed
- Import the Signed Certificate. Run the following command:
datical-control https import-certificate --certificate <path/to/file.p7b>
# Example:
datical-control https import-certificate --certificate /tmp/certificate.p7b