Listeners

Configuring Listeners

How to:

Configure a Listener

Reference:

All listeners have the same type of basic parameters. They differ in the additional parameters that are available. All three types have Security parameters. HTTP also includes Sessions Control, Aliases and Miscellaneous Settings.

Top of page

Procedure: How to Configure a Listener

From the menu bar, select Workspace.
Open the Special Services and Listeners folder in the navigation pane.
Right-click a listener and select Properties.
The Listener Configuration page opens.
In the Basic section, you can enter a value for the HOST parameter.
If you need to set additional parameters, expand the corresponding section and enter values in the parameter fields.
Click Save and Restart Server.

Top of page

Reference: Listener Basic Parameters

The HTTP, TCP, and SOAP listeners have the same type of basic parameters.

NODE

Defines the logical name of a node block. The settings are:

For HTTP - LST_HTTP.

For TCP - LST_TCP.

For SOAP - LST_SOAP.

PORT

Defines the port number that a listener is listening on. The default value for the HTTP listener is 8117. The default value for the TCP listener is 8116.

HOST

Defines an IP address that a listener is listening on. If blank, the listener will listen on all IP addresses.

Top of page

Reference: Additional Listener Parameters

The HTTP, TCP, and SOAP listeners have the following security parameter:

RESTRICT_TO_IP

Defines the name of a host or IP address(es) that will be accepted by the listener. The syntax is

hostname, xxx.xxx.xxx.xxx, yyy.yyy.yyy, ...

The address must be in base 256 standard dot notation. For platforms that support IPv6, IPv6 notation can be used if it is enabled (for example, 2001:1b1:719:1b1:203:baff:fe0a:fe23)

The internal default is *.*.*.*, which allows all IP addresses.

Note: You can use a wildcard to mask an entire section of the address, as in the following examples:

172.204.201.*
172.*.*.*
172.204.*.*
2001:1b1:719:1b1:203:baff:*:fe23

Partial masking is not supported, for example:

172.204.201.1*
172.204.201.*23

The HTTP listener has the following additional parameters:

Security

SECURITY

Defines the authentication protocol used by a secured listener. The valid values are:

IWA - for NTLM protocol.
KERBEROS - for Kerberos protocol.

LOGIN_FAILURE

Defines the type of message shown for a login error. The valid values are:

0 - Shows a general error message.

1 - Shows a precise error message.

The default value is 0.

LOGIN_HIDE_PROVIDERS

Defines whether available security providers or domains should be shown in the login screen. The valid values are:

0 - shows all available security providers or domains.
1 - hides all available security providers or domains.

CSRF_TOKEN

Defines whether a secret token should be used in all form submissions. This is used to prevent cross-site request forgery attacks. The valid values are:

0 - disable CSRF token.
1 - enable CSRF token.

Enable HTTPS

Enables HTTPS support, either for OpenSSL or Microsoft Windows SSL.

Both types have the following additional parameters:

SSL_CERTIFICATE: Defines the SSL certificate. The default certificate name for Microsoft SSL is iwaycert.p12.
SSL_PASSPHRASE_E: If the private key of the certificate is encrypted, an encrypted passphrase must be provided to decrypted the private key.

The following additional parameters are specific to OpenSSL:

SSL_PRIVATE_KEY: Defines the file that contains the private key for the listener. It must correspond to the public key embedded in the PEM certificate and must be in PEM format.
SSL_CA_CERTIFICATE: Defines the file containing the trusted CA certificate in PEM format. It is used to verify the client certificate. If the client fails to send the certificate or if verification fails, connections will be rejected. More than one CA certificate may be present in the file.

The following additional parameter is specific to Microsoft SSL:

SSL_FRIENDLY_NAME: Indicates a name used to identify the certificate in the PKCS#12 file, if the file contains more than one certificate.

Sessions Control

PERSISTENT_GLOBAL: Defines whether global FOCUS variables will be persistent within a browser session. The valid values are:

0 - Global variables are not persistent within a browser session.

1 - Global variables are persistent within a browser session.

The default value is 0.
PASS_EXPIRE_NOTIFICATION: Determines whether users receive a password expiration notification by defining the number of days before expiration at which a notification will occur. The default value is 0, meaning no notification.
MAX_WEBSESSION: Defines the maximum number of active sessions. The HTTP listener will reject connections to the Web Console if this number is reached. The default value is 0, meaning no limit.
LOG_LAST_REQUESTS: Defines the maximum number of last requests in a session that will be collected as statistics. The default value is 10.

Alias

IBI_HTML: Defines a URL alias for the primary file lookup directory. Lookup is performed first in the directory described by this alias. The default value is $EDAHOME/etc.
HTML_HOME: Defines a comma-delimited list of directories for file lookup. Directories are searched in the order in which they appear in this list.
SESSION_EXPIRATION

Miscellaneous Settings

DEFAULT_HOST

Defines the preferred hostname or IP address for the listener when a listener has multiple IP addresses or hostnames.

PROXY_SERVER

Runs the HTTP Listener as a proxy server. The valid values are:

0 - Proxy server for the HTTP protocol is off.

1 - Proxy server for the HTTP protocol is on.

The default value is 0.

Procedure: How to Configure a SOAP Listener

A SOAP listener needs to be configured before it will appear in the Special Services and Listeners folder.

From the menu bar, select Workspace.
Right-click the Special Services and Listeners folder, and select New, then SOAP.

The Listener Configuration page opens.
Enter values in the PORT and HOST fields.
Optionally, enter a host or IP address that will be accepted by listener in the RESTRICT_TO_IP field.
Click Save and Restart Listener.

The SOAP listener is added to the Special Services and Listeners folder.

Other Listener Options

How to:

The Listener right-click menu also enables you to configure the servlet and refresh the WebFOCUS jar files.

Top of page

Procedure: How to Configure the Servlet

From the menu bar, select Workspace.
Open the Special Services and Listeners folder in the navigation pane.
Right-click TCP/HTTP and select Configure Servlet.
The Configure Servlet page opens.
Enter the path to your Java Development Kit in the JDK_HOME field or click or click the selector button (...) and navigate to it.
Optionally, you can elect to register the JDK by selecting y from the Register JDK_HOME drop-down menu.
Enter the string that uniquely identifies the servlet and is a part of the URL allowing access to the servlet in the Context PATH field. The default value is ibi_apps.
Click Configure.

Top of page

Procedure: How to Refresh the WebFOCUS Jar Files

From the menu bar, select Workspace.
Open the Special Services and Listeners folder in the navigation pane.
Right-click TCP/HTTP and select Refresh WF jar files.
The Copy server related java components into WF installation directory page opens.
Enter the path to the jar files in the IBI_Repository_Root_Directory field or click the selector button (...) and navigate to it.
Click Refresh WF jar files.

Note: After copying the files, the application server will need to be restarted.