Maximo

 View Only
  • 1.  Maximo enable secure https

    Posted 28 days ago

    Hi,

    Need to enable https in Maximo url on 7.6.1v. Can anyone please share the steps.



    ------------------------------
    kumar v
    ------------------------------


  • 2.  RE: Maximo enable secure https

    Posted 27 days ago

    Hi Kumar,

    just go for a first hit in Google search for "maximo https configuration".

    https://moremaximo.com/blogs/alex-walter1/2020/04/23/maximo-ssl-https-configuration



    ------------------------------
    Andrzej Więcław
    Maximo Technical Consultant
    AFRY
    Wrocław, Poland
    ------------------------------



  • 3.  RE: Maximo enable secure https

    Posted 27 days ago
    This has step by step instructions as well as scripts to automate the process.  






  • 4.  RE: Maximo enable secure https

    Posted 27 days ago
    Edited by Rakesh Ghoshal 27 days ago

    Enabling HTTPS for IBM Maximo Asset Management 7.6.1  involves configuring the WebSphere Application Server and Maximo to use Secure Sockets Layer (SSL). This process ensures secure communication between clients and the server by encrypting data transmitted over the network.

    Here's a step-by-step guide to enabling HTTPS:

    Prerequisites

    ·       Administrator access to the WebSphere Application Server.

    ·       A valid SSL certificate. You can use a self-signed certificate for testing or obtain one from a trusted Certificate Authority (CA) for production environments.

    ·       Ensure that the WebSphere Application Server and Maximo are properly installed and running.

    Step 1: Generate a Key store and SSL Certificate

    You can generate a keystore and certificate using the ikeyman tool provided with WebSphere:

    1.     Open the ikeyman tool:

          <WebSphere Install Directory>/AppServer/bin/ikeyman.sh (for Linux)

       <WebSphere Install Directory>\AppServer\bin\ikeyman.bat (for Windows)

       2.     Create a new JKS (Java KeyStore) file:

    ·       Click on Key Database File > New.

    ·       Set the Key database type to JKS.

    ·       Enter a file name (e.g., maximo.jk) and provide a password.

    3.     Generate a self-signed certificate (or import a CA-signed certificate):

    ·       Open the newly created keystore.

    ·       Click on Personal Certificates > New Self-Signed Certificate.

    ·       Provide details like Common Name (CN) (e.g., your Maximo server's domain), Organization (O), and Country (C).

    ·       Set a validity period (e.g., 365 days).

    ·       Save the changes.

     Step 2: Configure SSL in WebSphere

    1.     Log in to the WebSphere Administrative Console (https://<hostname>:9043/ibm/console).

    2.     Navigate to:

                Security > SSL certificate and key management > Key stores and certificates

       3.     Select your keystore (CellDefaultKeyStore) or create a new one if necessary.

    ·       Set the keystore path to the location of your maximo.jks.

    ·       Enter the keystore password.

    4.     Configure the SSL settings:

    ·       Go to:

    Security > SSL certificate and key management > SSL configurations > NodeDefaultSSLSettings

         ·          Under Related Items, click Key store and certificates.

    ·          Update the keystore with your newly created or imported certificate.

    5.      Change the HTTP Transport to HTTPS:

    ·          Navigate to:

    Servers > Server Types > WebSphere application servers > <MaximoServerName> > Web Container > Web Container Transport Chains

         ·       Select WCInboundDefaultSecure and modify it:

    o   Set the port (default: 9443).

    o   Change the SSL configuration to NodeDefaultSSLSettings.

    6.     Save the configuration and restart WebSphere

    Step 3: Configure Maximo to Use HTTPS

    1.     Open the maximo.properties file:

       <Maximo Installation Directory>/applications/maximo/properties/maximo.properties

       2.     Update the following properties:

                properties

                mxe.webclient.webprotocol=https

                mxe.webclient.hostname=<your_maximo_hostname>

                 mxe.webclient.port=9443

       3.     Rebuild the EAR file to apply the changes:

                 cd <Maximo Installation Directory>/deployment

                  buildmaximoear.cmd (for Windows)

                  buildmaximoear.sh (for Linux)

    4.     Redeploy the EAR file in WebSphere:

    ·       Navigate to:

                            Applications > Application Types > WebSphere enterprise applications

         ·          Select the Maximo application, click Update, and upload the new EAR file.

     

    Step 4: Test the HTTPS Connection

    1.     Access Maximo using HTTPS:

                 https://<hostname>:9443/maximo

       2.     Verify the SSL certificate and confirm that the site is secure.

     Troubleshooting Tips

    ·       If you encounter certificate errors, ensure the browser trusts the SSL certificate.

    ·       Check the WebSphere logs (SystemOut.log, SystemErr.log, etc.) for any SSL-related errors.

    ·       Make sure the firewall allows inbound connections on the HTTPS port (9443).



    ------------------------------
    Rakesh Ghoshal
    Principal Solution Architect

    Gulf Business Machines
    E-Mail: rghshal@gbmme.com
    Linkedin: www.linkedin.com/in/rkg-kw
    PO Box 4175, Safat, Kuwait
    General Marketing & Services Representative for IBM WTC
    www.gbmme.com
    ------------------------------



  • 5.  RE: Maximo enable secure https

    Posted 27 days ago
    To enable HTTPS for your Maximo URL on version 7.6.1, follow these steps:
     
    Prerequisites
     
    SSL Certificate: Obtain a valid SSL certificate from a Certificate Authority (CA) or generate a self-signed certificate if used internally.
     
     
    Import SSL Certificate into Java Keystore
     
    Use keytool (found in your Java installation directory) to import the SSL certificate into the Java keystore.
     
     
     Configure the Application Server for HTTPS
     
    For WebSphere:
     
    Log in to the WebSphere Admin Console.
     
    Go to Security > SSL certificate and key management > Key stores and certificates.
     
    Import the keystore you configured in step 1.
     
    Configure an HTTPS port:
     
    Go to Servers > Server Types > WebSphere Application Servers.
     
    Select your server and navigate to Ports.
     
    Assign an HTTPS port if one is not already configured.
     
     
    Update the Virtual Hosts:
     
    Go to Environment > Virtual Hosts.
     
    Select the maximo_host (or the virtual host you use) and add the HTTPS port to it.
     
     
    Update Maximo Properties
     
    Log in to Maximo as an administrator.
     
    Go to System Properties.
     
    Update the mxe.hostname property to include https:// in the URL.
     
     
     
    Test and Validate HTTPS Configuration
     
    Restart the application server.
     
    Access Maximo using the HTTPS URL (e.g., https://<hostname>:<HTTPS_port>/maximo).
     
    Ensure that the connection is secure and that there are no SSL warnings.


    ------------------------------
    Sangaiah Nimmala
    ------------------------------



  • 6.  RE: Maximo enable secure https

    Posted 26 days ago

    Hope this helps

    Configuring HTTPS for IBM Maximo 7.6.1.2 involves several steps to enable secure communication. Here's a general outline:
     
     
     
    Purchase an SSL certificate from a trusted Certificate Authority (CA) or generate a self-signed certificate for testing purposes.
    Open IBM WebSphere Application Server (WAS) Admin Console.
     
    Go to Security > SSL certificate and key management > Key stores and certificates > NodeDefaultKeyStore.
     
    Import the certificate here or create a new key pair and request a certificate if you're using a CA.
     
     
     
     
    In the WebSphere console, navigate to SSL certificate and key management > SSL configurations.
     
    Select NodeDefaultSSLSettings (or a custom SSL setting if created) and ensure the certificate alias matches the imported certificate.
     
     
     
     
    Go to Servers > Server Types > WebSphere application servers > server1 (or your Maximo server instance).
     
    Under Ports, configure the WC_defaulthost_secure port (usually 9443) to be used for HTTPS.
     
     
     
     
    In the WebSphere console, go to Virtual Hosts > default_host.
     
    Set up HTTP and HTTPS ports here, and use rewrite rules or web server configurations to redirect HTTP traffic to HTTPS.
     
     
     
    In the Maximo System Properties application, set the following properties:
     
    mxe.useSSL = 1
     
    mxe.webclient.hostname to the HTTPS URL.
     
     
    Run the Live Refresh and restart the Maximo server.
     
     
    7. Test the HTTPS Configuration
     
    Access Maximo through the HTTPS URL (e.g., https://yourserver:9443/maximo) and verify that the connection is secure.
     
     
    Following these steps should enable HTTPS for Maximo 7.6.1.2 on WebSphere. Let me know if you need more details on any specific step!



    ------------------------------
    raju bammidi
    ------------------------------