000026760 - How to automatically redirect from HTTP to HTTPS when browsing to the RSA Security Analytics UI

Document created by RSA Customer Support Employee on Jun 14, 2016Last modified by RSA Customer Support Employee on Apr 21, 2017
Version 3Show Document
  • View in full screen mode

Article Content

Article Number000026760
Applies ToRSA Product Set: Security Analytics
RSA Product/Service Type: Security Analytics Server, Security Analytics UI
RSA Version/Condition: 10.4.0.1 and below
Platform: CentOS
O/S Version: EL5, EL6
IssueHow to automatically redirect from HTTP to HTTPS when browsing to the RSA Security Analytics UI.
This solution provides a workaround to redirect from HTTP to HTTPS when browsing to Security Analytics UI (i.e. http://<SA_Server_IP> -> https://<SA_Server_IP>).

Browsing to http://<SA_Server_IP> from a web browser returns a directory listing as shown in below example.


Index of /
Name                      Last Modified                 Size    Type
Parent Directory/   -                                                Directory
rsa/                        2014-Sep-10 06:31:00    -        Directory
lighttpd/1.4.32
Resolution

The Security Analytics server also serves as a yum repository and listens on port 80 in order for the appliances to download the upgrade packages (RPMs) over HTTP.


To automatically redirect from HTTP to HTTPS when browsing to the RSA Security Analytics UI, follow the instructions below.


  1. Connect to the Security Analytics server via SSH as the root user.
  2. Create and edit a file entitled index.html on the lighttpd web server with the following command:  vi /var/netwitness/srv/www/index.html
  3. Add the following lines to the index.html file, replacing x.x.x.x with the IP address or hostname of the Security Analytics server:
    <!DOCTYPE HTML>
    <html lang="en-US">
    <head>
    <meta http-equiv="refresh" content="5; url=https://x.x.x.x/">
    <title>Page Redirection</title>
    </head>
    <body>
    Redirecting to https.
    </body>
    </html>

  4. Save the file by entering the :wq! string in the VI editor.
  5. Restart the lighttpd service with the following command:  service lighttpd restart
If you are unsure of any of the steps above or experience any issues, contact RSA Support and quote this article number for further assistance.
NotesPlease note that the redirection does not occur when browsing to a path other than the root path.  For example, it will work for http://x.x.x.x but not for http://x.x.x.x/rsa/updates.
Legacy Article IDa68214

Attachments

    Outcomes