HTTPS and Web Consoles (BG, MWB, Info Server)

[roblew]

It appears that https is enabled by default with an 8.1 installation. Is there anything else required to configure https (secure) access to the Info Server Web Console, Business Glossary Browser, and Metadata Workbench other than pointing to the https link with 9443 port? Is there a way to restrict access to the non-secure (regular http) pages?

i.e.
https://host.chevrontexaco.net:9443
https://host.chevrontexaco.net:9443/bg
https://host.chevrontexaco.net:9443/workbench

Has this changed with 8.5?

FYI, we're on IS 8.1.0.1 on RedHat

[vmcburney]

In the version 8.x products both HTTP and HTTPS are enabled by default - so you should be able to disable the HTTP version. Under HTTP the login details are passed in clear on the wire while HTTPS encrypts everything. It uses the default WebSphere SSL key and certificate. I expect it would be in the WebSphere Application Server admin console: Servers > Server Types > WebSphere application servers - select server and select Ports.

[vmcburney]

You should also take into account this note from the Information Server 8.5 install and upgrade guide that HTTPS could be slower and introduce problems:

Note: If you install WebSphere Application Server by using the InfoSphere Information Server installation program, both the HTTP and HTTPS protocols are enabled in WebSphere Application Server. These protocols are also enabled if you preinstall WebSphere Application Server but use the built-in HTTP server.
HTTPS configuration is optional. If you do not configure HTTPS, HTTP is used instead. HTTPS adds greater security to your system, but also requires more
administrative work and can be error-prone. There is also a performance impact. Therefore, carefully consider the benefits and drawbacks before enabling HTTPS. You might not need HTTPS if you have a strong firewall in place.

[roblew]

Thanks Vince. This is good info to know. At least we have the capability, and it's our choice to use or disable.