step by step to Integrate https with ibm connections

1)  Verify where kdb and sth files are stored :

Was console: security -> SSL certificate and key management -> Key stores and certificates -> CMSKeyStore (verify path)

2) Open plugin xml and verify where store sth and kdb files  then copy from websphere path (1) .

Server Types-> Web servers > webserver1 > Plug-in properties -> Plug-in key store directory and file name
If not present:

-) Configure Ihs using ibm docs then open  Was console: servertypes / webServers / webservername -> plugin options-> copy kdb to plugin folder
-) Set default cert in kdb using ikeyman

3) Configure virtual host to use ssl :


LoadModule ibm_ssl_module modules/mod_ibm_ssl.so

<IfModule mod_ibm_ssl.c>
Listen 0.0.0.0:443

<VirtualHost *:443>
ServerName www.mydomain.com
SSLEnable
</VirtualHost>

</IfModule>

SSLDisable
Keyfile "<path used in plugin>\plugin-key.kdb"
SSLStashFile "<path used in plugin>\plugin-key.sth"


LoadModule was_ap22_module /opt/ibm/Plugins/bin/64bits/mod_was_ap22_http.so
WebSpherePluginConfig /opt/ibm/Plugins/config/webserver1/Plugin-cfg.xml

Step by step htadmin config to use with Websphere Application Server

Here you can find step by step configuration for use IHS htadmin

Step 1 generate user :

/opt/ibm/HTTPServer/bin/htpasswd -cm /opt/ibm/HTTPServer/conf/admin.passwd htadmin

Step 2 edit admin.conf :

vi /opt/ibm/HTTPServer/conf/conf/admin.conf

#Change listen port:
Listen 8008

#Change running user
User wwwrun
Group www

#Set serverName
ServerName servername.mydomain.com

Step 3 add user and group to run htadmin:
groupadd www
useradd wwwrun -g www

Step 4 run htadmin:

/opt/ibm/HTTPServer/bin/adminctl start

3 simple step to use .htaccess & .htpasswd

1) Create htpasswd

htpasswd -c /srv/www/htpasswd username —-> <insert password>

2) Put file named .htaccess
containing this lines:

#######################################
AuthUserFile  /srv/www/.htpasswd
AuthType Basic
AuthName "backend"
Require valid-user
#######################################

3) allow override in http.con as follow:

<Directory "/srv/www/htdocs">;
...

# AllowOverride controls what directives may be placed in .htaccess files.
# It can be "All", "None", or any combination of the keywords:
#   Options FileInfo AuthConfig Limit
AllowOverride AuthConfig
# Controls who can get stuff from this server.
Order allow,deny
Allow from all

...
</Directory>

How to setup minimal Subversion Server.

Easy Svn Install without Ldap under Open Suse:

1 – zypper Install svn

2 – zypper install apache2

3 – Create Repository

svnadmin -create /var/www/svn1/

4 – Create passwd

htpasswd -c “/etc/subversion/passwd” dev   —> Insert password

5 – Apache Config

################################################Svn Config

LoadModule dav_svn_module                 /usr/lib/apache2/mod_dav_svn.so
LoadModule authz_svn_module               /usr/lib/apache2/mod_authz_svn.so

<VirtualHost *:80>
ServerName svn.yourdomain.local
<Location /svn>
DAV svn
SVNPath /var/www/svn1
AuthType Basic
AuthName “Your SVN repository name”
AuthUserFile “/etc/subversion/passwd”
# everyone can read but only user “dev” can commit
<LimitExcept GET PROPFIND OPTIONS REPORT>
Require user dev
</LimitExcept>
</Location>
</VirtualHost>

Apache Http WebDav Configurations

Here a example of base configuration for Apache Http and WebDav:

1) First of All you have to create a .htaccess file:
[ApacheRoot]/bin/htpasswd -c /usr/local/apache2/.htpasswd username

2) Create an include in your httpd.con (I prefer to create a folder and include all *.conf file) :
Include conf/include/*.conf

3) create a dav.conf file and put it in the include dir.
####      dav.conf
#Loading Mudels
LoadModule dav_module                     modules/mod_dav.so
LoadModule dav_fs_module                  modules/mod_dav_fs.so

#Dav lck and timeout
DavLockDB /var/lock/dav/DavLock
DAVMinTimeout 600

#WebDav Virtual host enabled
<VirtualHost *:80>
ServerName dav.your.domain
Alias /dav /var/www/dav
<Location /dav>
AuthType Basic
DAV On
AuthName “WebDAV”
AuthUserFile “/usr/local/apache2/.htpasswd”
Options None
Require user username
</Location>
<Location />
Order Allow,Deny
Allow from all
</Location>
</VirtualHost>
4) Restart your Apache.

5) Now you should connect with a WebDav Client.