Configuring HTTPS
By default, after installing users access the Online Marketing Explorer Web application through HTTP. This task describes how to configure Online Marketing Explorer for HTTPS.
Before you begin
Before configuring HTTPS for Online Marketing Explorer, you must first configure HTTPS on the Content Manager Server. For more information, see the implementor's documentation portal.
About this task
Note: The Online Marketing Explorer Web application requires bi-directional connection with the Aggregation Service. In most cases, you will not need to set up a secure connection because typically the Aggregation Service and the Online Marketing Explorer Web application are installed on the same machine, or they are installed on separate machines within a corporation network (see Scaling Online Marketing Explorer). In the event this is required, this task also describes how to configure an HTTPS connection between the Online Marketing Explorer Web application and the Aggregation Service.
Procedure
- Open Internet Information Services (IIS) Manager.
- Go to your SDL Tridion Web site.
- Go to the OnlineMarketing Web application running in the SDL Tridion Web site.
- Open the Online Marketing Explorer
web.configfile, located in \OnlineMarketing\Web\Services\ folder, in a text editor. - Uncomment the endpoint sections marked as:
<!--For Https uncomment this endpoint--> - In the
<basicHttpBinding>section, uncomment theSecureTransportbinding:<binding name="SecureTransport" closeTimeout="01:00:00" openTimeout="01:00:00" receiveTimeout="01:00:00" sendTimeout="01:00:00" maxReceivedMessageSize="2147483647" maxBufferSize="2147483647" maxBufferPoolSize="2147483647"> <readerQuotas maxDepth="32" maxStringContentLength="1073741824" maxArrayLength="1073741824" maxBytesPerRead="1073741824" maxNameTableCharCount="16384" /> <security mode="Transport"> <transport clientCredentialType="Windows" proxyCredentialType="None" realm="" /> </security> </binding> - In the
<webHttpBinding>section, uncomment theSecureBasicWebHttpBindingbinding:<binding name="SecureBasicWebHttpBinding" closeTimeout="01:00:00" openTimeout="01:00:00" receiveTimeout="01:00:00" sendTimeout="01:00:00" maxReceivedMessageSize="2147483647" maxBufferSize="2147483647" maxBufferPoolSize="2147483647"> <security mode="Transport"> <transport clientCredentialType="Windows" /> </security> </binding> - Save and close the file.
- Open the Online Marketing Explorer
web.configfile, located in \OnlineMarketing\Web\Models\ folder, in a text editor. - Uncomment the following endpoint:
<endpoint name="SecureProxy" address="" behaviorConfiguration="Tridion.Web.UI.ContentManager.WebServices.AspNetAjaxBehavior" binding="webHttpBinding" bindingConfiguration="Tridion.Web.UI.ContentManager.WebServices.WebHttpsBindingConfig" contract="Tridion.OnlineMarketing.Server.WebModel.Services.Proxy" /> - In the
<webHttpBinding>section, uncomment theTridion.Web.UI.ContentManager.WebServices.WebHttpsBindingConfigbinding:<binding name="Tridion.Web.UI.ContentManager.WebServices.WebHttpsBindingConfig" maxReceivedMessageSize="2097152" maxBufferSize="2097152"> <readerQuotas maxArrayLength="81920" maxBytesPerRead="5120" maxDepth="32" maxNameTableCharCount="81920" maxStringContentLength="2097152" /> <security mode="Transport"> <transport clientCredentialType="Windows" /> </security> </binding> - Save and close the file.
- To enable HTTPS between the Aggregation Service and the Online Marketing Explorer Web application you need to:
- install a trusted certificate on the machine where the Aggregation Service installed—see http://support.microsoft.com/kb/816794
- bind the certificate to the port where the secured service is hosted (2600 by default):
- run the
ReserveNamespace.exeutility—see Configuring the Aggregation Service user account, protocol, or port - bind certificate to the port—see http://msdn.microsoft.com/en-us/library/ms733791.aspx
- install a trusted certificate on the machine where the Online Marketing Explorer Web application is installed—see http://support.microsoft.com/kb/816794
- run the
- configure the Aggregation Service
AggregationService.exe.config(see step 14). - configure
OnlineMarketing\Web\Services\Web.config(see step 15). - configure
OnlineMarketing\Web\Models\Web.config(see step 16).
- On the machine with the Aggregation Service installed, configure the
AggregationService.exe.configfile:- Open the
AggregationService.exe.configfile, by default located in your Tridion installationbinfolder, in a text editor. - In the following bindings, change security mode to
<security mode="Transport">:BasicHttpBinding_IOnlineMarketingConnectorServicebasicHttpAggServiceBasicWebHttpBinding
- In the
<behavior name="DataProviderServiceBehavior">section, configure theserviceMetadatasection as follows:<serviceMetadata httpGetEnabled="false" httpsGetEnabled="true" /> - In the
<endpoint name ="BasicHttpBinding_IOnlineMarketingConnectorService" />endpoint, configure the address of Online Marketing Connector:<endpoint address="http://[OMEServerName]/OnlineMarketing/OnlineMarketingConnectorService.svc" binding="basicHttpBinding" behaviorConfiguration="OnlineMarketingBehavior" bindingConfiguration="BasicHttpBinding_IOnlineMarketingConnectorService" contract="OnlineMarketingConnectorService.IOnlineMarketingConnectorService" name="BasicHttpBinding_IOnlineMarketingConnectorService" /> - Save and close
AggregationService.exe.config.
- Open the
- On the machine with Online Marketing Explorer installed, configure the Services
Web.configfile:- Open the
\OnlineMarketing\Web\Services\Web.configfile in a text editor. - In the
basicHttpBinding_IDataProviderServiceandBasicHttpBinding_IOnlineMarketingConnectorServicebindings, change security mode to:<security mode="Transport"> - In the
<endpoint name="Reporting_IDataProviderService" />endpoint, configure the address of the Aggregation Service:<endpoint address="https://[AFServerName]/AggregationDataService" binding="basicHttpBinding" bindingConfiguration="basicHttpBinding_IDataProviderService" contract="AggregationDataService.IDataProviderService" name="Reporting_IDataProviderService"> - Save and close
Web.config.
- Open the
- On the machine with Online Marketing Explorer installed, configure the Models
Web.configfile:- Open the
\OnlineMarketing\Web\Models\Web.configfile in a text editor. - In the
<binding name="ODataWebHttpBinding">binding, change security mode to:<security mode="Transport"> - In the
<appSettings>section, configure theOMEODataService:<appSettings> <add key="OMEODataService" value="https://[AFServerName]/OnlineMarketingODataService" /> </appSettings> - Save and close
Web.config.
- Open the
- Restart IIS.
- Open Component Services and restart the Tridion Aggregation Service.