Remote IP Valve settings for TLS offloading may need more attributes to be configured.

  • Document ID:KM03755383
  • Creation Date:28-Oct-2020
  • Modified Date:19-May-2021
    • Micro Focus Products:
      operations orchestration

Summary

Remote IP Valve settings for TLS offloading may need more attributes like 'httpsServerPort' to be configured.

Question

To make use of TLS offloading, you need to edit the Tomcat server.xml file to include the following line that is a configuration for 'Remote IP Valve' provided by Tomcat as written in https://docs.microfocus.com/itom/Operations_Orchestration:2019.11/DeploymentArchitecture.

 

  <valve classname="org.apache.catalina.valves.RemoteIpValve" protocolheader="X-Forwarded-Proto">

 

However it might not work in a certain environment.

Answer

In such a case, try to add 'httpsServerPort' attribute and set an https port used by Central(Tomcat) to it.

 

  <Valve className="org.apache.catalina.valves.RemoteIpValve" protocolHeader="X-Forwarded-Proto" httpsServerPort="8443" />

 

See https://tomcat.apache.org/tomcat-9.0-doc/config/valve.html#Remote_IP_Valve for more details about the attribute and others.