TargetServer SSL issue

Not applicable

I am trying to enable SSL for TargetServer. I went through the documentation : http://docs.apigee.com/api-services/content/load-balancing-across-backend-servers#configuringatarget...

I have Target Servers added through UI on the port 443.

As per the documentation i need to enable SSL in TargetServer configuration. Do i need to add a separate XML configuration manually for <TargetServer/> to enable SSL? Or from UI is there any option to do that ?

Solved Solved
1 6 1,002
1 ACCEPTED SOLUTION

@Swapnil Raverkar,

You can enable the SSL for the target server either by running the management APIs in the Smart Docs links or in the terminal/console.

Smartdocs links for:

Create a Target Server - You can enable SSL for a target server while creating the target server itself OR

Update a TargetServer - You can enable SSL by updating an existing target server

Here's a sample SSL enabled target server contents:

{
  "host": "www.somehost.com",
  "isEnabled": true,
  "name": "myhttps-targetserver",
  "port": 443,
  "sSLInfo": {
    "ciphers": [],
    "clientAuthEnabled": "false",
    "enabled": "true",
    "ignoreValidationErrors": false,
    "protocols": []
  }
}

Regards,

Amar

View solution in original post

6 REPLIES 6

@Swapnil Raverkar,

You can enable the SSL for the target server either by running the management APIs in the Smart Docs links or in the terminal/console.

Smartdocs links for:

Create a Target Server - You can enable SSL for a target server while creating the target server itself OR

Update a TargetServer - You can enable SSL by updating an existing target server

Here's a sample SSL enabled target server contents:

{
  "host": "www.somehost.com",
  "isEnabled": true,
  "name": "myhttps-targetserver",
  "port": 443,
  "sSLInfo": {
    "ciphers": [],
    "clientAuthEnabled": "false",
    "enabled": "true",
    "ignoreValidationErrors": false,
    "protocols": []
  }
}

Regards,

Amar

Thanks. But from UI is there any option to configure SSL for Target Servers ? Or we have to use management APIs ?

@Swapnil Raverkar,

Currently there's no option to configure SSL for Target servers via UI.

@AMAR DEVEGOWDA

This is strange, trace indicates it is not using https on the target server I set up using the management API.

2733-screen-shot-2016-05-20-at-40004-pm.png

Is this just a bug in the UI?

I created using: POST

<TargetServer name="sometarget-secure">
  <Host>www.sometarget.net</Host>
  <Port>443</Port>
  <IsEnabled>true</IsEnabled>
  <SSLInfo> 
      <Enabled>true</Enabled> 
  </SSLInfo> 
</TargetServer>

And the GET has:

{
  "host": "www.sometarget.net",
  "isEnabled": true,
  "name": "sometarget-secure",
  "port": 443,
  "sSLInfo": {
    "ciphers": [],
    "clientAuthEnabled": "false",
    "enabled": "true",
    "ignoreValidationErrors": false,
    "protocols": []
  }
}

Did you find out why this was happening? I am facing the same issue.

This is a bug in the UI.

BTW, as of 18.09.25 release you can configure a Target Server for HTTPS, see release notes here:

https://docs.apigee.com/release/notes/18092500-apigee-edge-public-cloud-release-notes-ui