Community
Select to view content in your preferred language

Enabling SSL - No access to manager, admin, or rest services anymore

6049
11
04-16-2013 08:24 AM
JeffMachamer
by
Occasional Contributor
‎04-16-2013 08:24 AM
I had a typical ArcGIS Server 10.1 install on my local machine that worked without issues.

Today I went into manager to enable HTTPS so that I could begin testing out security configuration for our application.  After enabling HTTPS using a self signed certificate, I am no longer able to access anything in ArcGIS server.

https://machinename:6443/arcgis/admin, https://machinename.domain.com:6443/arcgis/admin (and /arcgis/manager, /arcgis/rest) all return "The connection was reset".

The original :6080 sites redirect to the 6443 sites.  Web adapter is not installed.

Looking in:
C:\arcgisserver\logs\machinename\server\ at the latest logfile I find a file full of these entries:
<Msg time="2013-04-16T11:21:46,66" type="WARNING" code="7709" source="Admin" process="1336" thread="1" methodName="" machine="machinename" user="" elapsed="">The Web Server was found to be stopped when it should have been started. Restarting it.</Msg>

I suspect I must have setup the self signed certificate incorrectly and need to redo that step, but I am unable to access manager anymore to do so.  Is there anyway to reset the server configuration back to non-ssl manually without access to manager?  Or will I be stuck uninstalling and reinstalling?  (In hindsight I should have left both http and https access enabled initially until I knew https was working...)

Thanks,

Jeff Machamer
3-GIS
0 Kudos
11 Replies
JeffMachamer
by
Occasional Contributor
‎08-26-2013 06:58 AM
Thanks for the info.  Hopefully I won't need to use it.  🙂

For future reference, if you ever mess up your self-signed certificate in ArcGIS Server 10.1 and up, here's how to set it back to the default setting:
�?��?�IF CA certificate fails

  1. The certificates live here .....\arcgisserver\config-store\machines\servername

  2. Open the server.xml  and scroll down to the bottom.

  3. On the last line of code, you will see a keyAlias =�?�name of the certificate�?�.  Since this one isn�??t working, change the alias back the original ESRI selfsigned certificate (SelfSignedCertificate). 

  4. The code should look like this:

    5. <Connector SSLEnabled="true" clientAuth="false" keyAlias="SelfSignedCertificate"
  5. Stop and start the ArcGIS Server service. 

0 Kudos
JustinSlootsky
by
Occasional Contributor
‎10-28-2013 01:22 PM
For future reference, if somebody else ends up here, the server.xml file is in your tomcat configuration directory.  Mine was at
X:\ArcGIS\Server10.1\Server\framework\runtime\tomcat\conf  but I think the normal location is:
C:\Program Files\ArcGIS\Server10.1\Server\framework\runtime\tomcat\conf

I found this server.xml file too late to be able to take advantage of this solution, but maybe the next person can use it.
0 Kudos