Manage the HTTP server

To use HTTP, specify the HTTP settings for both the SecureTransport Edge and SecureTransport Server.

  1. Select one or both of Enable HTTP and Enable HTTPS. If you select Enable HTTPS, by default Enable HSTS will also be selected. You can also deselect Enable HSTS once Enable HTTPS is selected. When HSTS is enabled, a HSTS response will always be sent, redirecting the plain HTTP connection to HTTPS. Enabling HSTS requires a HTTP server restart.
  2. For more information on the HSTS server configuration options, see Security-related HTTP headers and policies.
  3. The default HTTP port number is 80 for root installations and 8080 for non-root installations. The default HTTPS port number is 443 for root installations and 8443 for non-root installations. If a default port is in use, SecureTransport displays a message and you must change the Port to use a port number other than the default setting.
  4. If you enabled HTTPS, select an SSL Key Alias from the drop-down list, for example, httpd. If you enabled HTTPS, HSTS will also be enabled unless you deselect it. For information about storing the HTTPS certificate in a hardware security module, see Store certificates in a hardware security module.
  5. If you enabled HTTPS, to restrict HTTPS connections to FIPS 140-2 Level 1 certified cryptographic libraries, select the Enable FIPS Transfer Mode check box. For more information, see FIPS transfer mode.
  6. Click Start.
Note To enable HTTP without SSL (HTTP and not HTTPS), you must create an SSL encryption entry for a user class with SSL encryption optional. See Manage SSL access.

Related topics:

Related Links