Share this page
Linux: Advanced server configuration
This section describes advanced configuration tasks for the OpenText Software Delivery Management server.
Redirect http to https
This procedure describes how to redirect http to https. You must redirect to https when accessing the OpenText Software Delivery Management server directly, and not through a front-end server.
To redirect http to https:
-
Edit /opt/octane/webapps/root/WEB-INF/web.xml, and add the following at the end (before </web-app>):
<security-constraint> <web-resource-collection> <web-resource-name>Everything</web-resource-name> <url-pattern>/*</url-pattern> </web-resource-collection> <user-data-constraint> <transport-guarantee>CONFIDENTIAL</transport-guarantee> </user-data-constraint> </security-constraint>
-
Restart OpenText Software Delivery Management.
-
Access OpenText Software Delivery Management using http://<OpenText Software Delivery Management>:8080/ui. Port 8080 is the default port.
You should be redirected to https://<OpenText Software Delivery Management>:8443/ui. If not, ensure that SecurePort in jetty.xml matches your secure port.
Configure number of allowed open files
If OpenText Software Delivery Management is under a very heavy load, it might try to use too many Linux resources. In this case, Linux kills the server process. Do the following to increase the number of allowed open files to 65536:
To configure number of allowed open files:
-
Open the /etc/security/limits.conf file.
-
Add the following line:
octane hard nofile 65536
-
Restart the OpenText Software Delivery Management server.
For details, see https://easyengine.io/tutorials/linux/increase-open-files-limit/.
Configure SSL offloading
When OpenText Software Delivery Management is installed with SSL offloading, make sure re-directions go to HTTPS addresses instead of HTTP addresses.
To configure SSL offloading:
-
The X-Forwarded-Proto header must be defined in a reverse proxy.
For example (on Apache):
-
Add this line at the end of httpd.conf:
RequestHeader set X-Forwarded-Proto https
- Restart Apache.
-
-
Open the jetty.xml file in an editor.
- Linux: /opt/octane/server/conf/jetty.xml
- Windows: C:\Program Files\octane\server\conf\jetty.xml
In the section <New id="httpConfig" class="org.eclipse.jetty.server.HttpConfiguration">, make sure that the following lines are uncommented:
<Call name="addCustomizer">
<Arg><New class="org.eclipse.jetty.server.ForwardedRequestCustomizer"/></Arg>
</Call>
Dedicate a cluster node for background jobs
You can dedicate nodes for certain purposes, such as for running background asynchronous jobs. This frees up nodes for processing requests that come directly from the OpenText Software Delivery Management UI, as users work.
Overview
Cluster nodes can be one of the following types:
-
Worker nodes. Cluster nodes that handle background asynchronous jobs, such as synchronization.
-
Web nodes. All other nodes. Web nodes generally handle direct requests from OpenText Software Delivery Management, but can also handle background jobs if the worker nodes are not available. The load balancer distributes the requests as usual among the web nodes.
To dedicate a node for background jobs
After the installation is complete, and you have verified that the server is up and you can log into OpenText Software Delivery Management, perform the following:
-
Stop the OpenText Software Delivery Management server.
-
Add another node to the cluster that is not connected to the load balancer.
-
Follow the instructions for installing on cluster nodes. For details, see Install and initialize OpenText Software Delivery Management on cluster nodes (optional).
-
The OpenText Software Delivery Management site admin authenticates, and then updates the ROLE for this cluster node in the SERVER table using the REST API.
PUT https://<server>:<port>/admin/servers { "data": [ {"role":"WORKER",
"id":"<serverID>"
} ]}
}For details, see Develop.
-
Start the OpenText Software Delivery Management server.
See also:
