How to enable HTTPS connection between end user and RUM Agent?
By default end user data will be collected and sent via HTTP connection to RUM Agent. To enable HTTPS connection you should have an valid SSL Certificate (keystore file basically), not a self signed certificate.
- This step applies only to RUM Agent versions below 4.0.
- Open the AppServer.properties file located under <RUMAgent_Home>/conf/ directory in any text editor. Search for apm.rum.isHttps key in file, set the value as true and save the changes.
- Copy the keystore file which has your SSL Certificate into the <RUMAgent_Home>/conf/sslcerts/ directory.
- Open the rumagent.properties file located under <RUMAgent_Home>/conf/sslcerts/ directory in any text editor.
- Update your keystore file name in keystore key.
- Remove the key encryptedkeypass (if present).
- Update your keystore password in keypass key and save the changes.
- Default RUM Agent SSL port is 7443.
- To change it, replace the existing port number with new port number in sslservers.properties file located under <RUMAgent_Home>/conf/ directory.
- Save all the changes.
- Restart RUM Agent.
- Access https://hostname:sslport in browser and check if Agent has started and accessible properly on SSL port.
- If the RUM script is already injected in your application, make sure to replace it with the latest script that uses the SSL port.
Using an self signed or untrusted certificate will affect data collection of the Real User Monitor.
Note: If you import any certificate in the RUM agent, ensure that the keystore password & keystore certificate password are the same.
Supporting KBs: