Setting up SSL for Document Conversion

If you have an SSL certificate, you can set up secure communication by editing the docconverter/conf/server.xml file and specifying the new secure URL in your Document Conversion Settings.

Before you can set up secure communication with your Document Conversion server, you need to acquire an SSL certificate.

To add an SSL certificate to your instance:

  1. Edit the /usr/local/jive/services/docconverter/conf/server.xml file and add a connector to listen on port 8443.

    For example:

    <Connector port="8443" maxThreads="200" scheme="https" secure="true" SSLEnabled="true" SSLCertificateFile="/usr/local/jive/services/docconverter/home/jive.crt" SSLCertificateKeyFile="/usr/local/jive/services/docconverter/home/jive.key" clientAuth="optional" />

    where SSLCertificateFile is the certificate file and SSLCertificateKeyFile is the key file.

    For more information on setting up Tomcat and https, see Apach documentation at http://tomcat.apache.org/tomcat-8.0-doc/ssl-howto.html.
  2. Make sure the SSL engine is on.

    For example:

    <Listener className="org.apache.catalina.core.AprLifecycleListener" SSLEngine="on"/>
  3. Restart the document conversion service by running the following command as the jive user: 
    jive restart docconverter
  4. Go to System > Settings > Document Conversion Settings and edit Conversion Service Settings to specify the new secure URL and port.

    For example: 

    https://conversion-node:8443/conversion/v1
  5. Verify that you can run all conversion tests successfully.