Special SSL Consideration

Owned by Kevin Pham (Deactivated)
Last updated: Sept 01, 2020 by Helen Kosova (Deactivated)

If SSL is set up in the previous version of Zephyr Enterprise, then the steps below must be completed after the successful upgrade to 6.8. This applies specifically to Zephyr instances where SSL is enabled and not through the reverse proxy (applies to all versions of Zephyr).

Step 1: Find these two web.xml files:

<Zephyr directory>\tomcat\webapps\flex\WEB-INF\web.xml
<Zephyr directory>\tomcat\webapps\zephyr\WEB-INF\web.xml

Step 2: Uncomment the following security tags:

<!-- Uncomment the following if the jdbc.properties secured property is true-->
    <!--security-constraint>
        <web-resource-collection>
            <web-resource-name>Zephyr</web-resource-name>
            <url-pattern>/*</url-pattern>
                              </web-resource-collection>
                              <user-data-constraint>
                                             <transport-guarantee>CONFIDENTIAL</transport-guarantee>
                              </user-data-constraint>
    </security-constraint-->

Step 3: After making the modifications, make sure to restart the server.


If your Java keystore file is stored in the Zephyr/tomcat/conf directory, the upgrade does not migrate the file. So, before upgrading Zephyr, make a backup of your Java keystore file located in the <Zephyr>/tomcat/conf folder. After upgrading Zephyr, navigate to <Zephyr>/tomcat/conf, add your Java keystore file from the backup, and restart Zephyr Service.