Administrator

HTTP/HTTPS Port Number Reference

HTTP and HTTPS ports, default assignments, and protocols.

Table 48: Default HTTP/HTTPS Ports
Type Default Protocol Where Configured

Client communications, unsecured

8080

HTTP

In Management Cockpit, see Start of the navigation path Settings Next navigation step Connectors Next navigation step HTTP Client Connector Next navigation step Port End of the navigation path.

Client communications with one-way SSL authentication

8081 (secure)

HTTPS

In Management Cockpit, see Start of the navigation path Settings Next navigation step Connectors Next navigation step HTTPS Client Connector Next navigation step Port End of the navigation path

Client communications with mutual SSL authentication

8082 (secure)

HTTPS

In Management Cockpit, see Start of the navigation path Settings Next navigation step Connectors Next navigation step Mutual SSL Authentication Client Connector Next navigation step Port End of the navigation path

Administration port, Management Cockpit, and Kapsel command line interface (CLI) communications with one-way SSL authentication

8083 (secure)

HTTPS

In Management Cockpit, see Start of the navigation path Settings Next navigation step Connectors Next navigation step HTTPS Admin Connector Next navigation step Port End of the navigation path

Disabling HTTP/HTTPS Ports

To disable HTTP or HTTPS ports after installation, you can edit the SMP_HOME/Server/config_master/org.eclipse.gemini.web.tomcat/default-server.xml file. You should be familiar with XML.

Before you begin, back up the default-server.xml file, and save it to a secure location.

default-server.xml defines four connectors as XML elements:
  • noSSL – for runtime services from the SDK using the HTTP protocol.

  • oneWaySSL – for runtime services from the SDK using the HTTPS protocol.

  • mutualSSL – for runtime services from the SDK using the HTTPS protocol, with client and server certificates.

  • AdminSSL – for Administrative services that are used by Management Cockpit.

To disable plain HTTP (without SSL/TLS).
  1. Edit the default-server.xml file, and delete the entire noSSL connector XML element.

  2. Save the file, and restart the server.

To disable HTTPS (SSL/TLS):
  1. Edit the default-server.xml file, and delete the oneWaySSL and the mutualSSL connectors; remove the entire XML elements.

  2. Replace the AdminSSL connector element by defining the following properties only:
    Property Value
    protocol HTTP/1.1
    port 8083
    maxThreads 200
    smpServiceType admin
    compression on
    compressionMinSize 2048
    compressableMimeType text/html,text/xml,application/javascript,text/json,text/plain,application/json
    The AdminSSL connector XML element definition should be:
    <Connector smpConnectorName="AdminSSL"
    protocol="HTTP/1.1"
    port="8083" maxThreads="200" smpServiceType="admin"
    compression="on" compressionMinSize="2048"
    compressableMimeType="text/html,text/xml,application/javascript,text/json,text/plain,application/json" />
  3. Save the file, and restart the server.