Encrypting a Standalone Installation

image_pdfimage_print

If Jedox is not used in a cluster setup (all services are running on the same server), the following configuration can be used.

Jedox In-Memory DB

Adjust the palo.ini as follows:

in Windows: <Install_path>\Jedox Suite\olap\data\palo.ini
in Linux
: <Install_path>/Data/palo.ini

http “” 7777
….
admin “127.0.0.1” 7790
encryption optional
https 7778
key-files <path to ca bundle> <path to cert + privkey> <path to diffie hellman param file>

  1. Parameter is the ca bundle, which contains root certificate and intermediate certificates.
  2. Parameter is a certificate file combined with the private key.
  3. Parameter is diffie hellman param file, which can be generated.

Important: the port used for the “admin” connection is used for all other internal settings.

   

Jedox Web

Here you have to adjust the httpd.conf.

in Windows: <Install_path>\Jedox Suite\httpd\conf\httpd.conf
in Linux: <Install_path>/etc/httpd/conf/httpd.conf

Change the standard parameters from:
Define JDX_SERVER_DNS "127.0.0.1"
Define JDX_SERVER_IP "127.0.0.1"

to:
Define JDX_SERVER_DNS "www.example.com"
Define JDX_SERVER_IP "www.example.com"

To activate the SSL module change:
#Define SSL
#Define JDX_REDIRECT_HTTP

to:
Define SSL
Define JDX_REDIRECT_HTTP

Add the correct path to the certificates in following lines:
Define JDX_SSLCERTIFICATEFILE_TMPL "<path to certificate>"
Define JDX_SSLCERTIFICATEKEYFILE_TMPL "<path to privatekey>"
Define JDX_SSLCACERTIFICATEFILE_TMPL "<path to ca bundle>"=

Change the port in
Windows: <Install_path>\Jedox Suite\httpd\app\etc\config.php
Linux: <Install_path>/htdocs/app/etc/config.php
from:
define('CFG_PALO_PORT', '7777')
to:
define('CFG_PALO_PORT', '7790')

Core

Change the port in

Windows: <Install_path>\Jedox Suite\core\palo_config.xml
Linux: <Install_path>/core-Linux-x86_64/etc/palo_config.xml

from:
<port>7777</port>
to:
<port>7790</port>

After that save the changes and restart the service/processes.

Communication in Jedox Web

Adjust the connections in Jedox Web to use the internal interface 127.0.0.1 and port 7790.

SVS

Change the port in

Windows: <Install_path>\Jedox Suite\svs\php.ini
Linux:
<Install_path>/svs-Linux-x86_64/php.ini

from:
palo_server_port=7777
to:
palo_server_port=7790

image_pdfimage_print