Configuring SSL only for the login process | HCL Digital Experience
You can encrypt only the login process to HCL Digital Experience and then allow subsequent requests through HTTP.
About this task
Remember: These steps configure SSL only
for the login; if you want to configure SSL for other features such
as themes and skins, complete the steps in Setting up SSL.
Procedure
- Configure SSL for the webserver plug-in if you have an
external webserver that is configured for SSL. Consult with your webserver
vendor for more details on how to configure SSL for your webserver.
For more information, go to Guide to properly setting up SSL
within the IBM HTTP Server topic in the related information
section.Note: Proceeding with this task without configuring SSL for the webserver plug-in causes the login to fail.
- Verify that the following parameters exist and are correctly
set for your installation in the WP ConfigService application:
- Complete the following steps to encrypt the login process
to HCL Portal and allow subsequent
requests through HTTP:
The Login portlet uses the UseSecureLoginActionUrl parameter to control the generation of the login action URL. Set this parameter to true to use a secure URL for login.
- Click the Administration menu icon. Then, click .
- Search for Title start with = "Login".
- Select the Configure portlet icon.
- Edit the UseSecureLoginActionUrl parameter and set the parameter to true.
For more information about setting up SSL within the IBM HTTP Server, see Guide to properly setting up SSL within the IBM HTTP Server.
Results
Note: Confirm that the login was encrypted by monitoring
the packets through a network utility such as Ethereal or by reviewing
the source code of the login form when accessed through an unprotected
HTTP URL. The login form must have an action URL that is secured,
for example
<form method="post" action="https://....">
.
Set your browser to warn you when you change between secure and insecure
modes to see the behavior on the client-side.