Skip to end of metadata
Go to start of metadata

Table of Contents

How to configure Tomcat Connector for IIS 7 or above

The following steps show how to configure Tomcat connector with IIS 7 or above:

Configure the AJP Connector

  1. Get the package "tomcat_iis_connector.zip" from the "[ADSS Server installation directory]/support". It contains the configuration files necessary for the ISAPI filter to run and communicate with your ADSS Server.
  2. Extract the zip file and place the contents in a folder alongside the downloaded binary file in a convenient location on your server. The default location is C:\tomcat_iis_connector.
  3. Copy the 'isapi_redirect.dll' from either of x32 or x64 directories (based on your hardware architecture on IIS server machine) within the 'tomcat_iis_connector' directory and place this dll file at the root of 'tomcat_iis_connector directory'
  4. If you extracted the AJP Connector to a directory other than the default (C:\tomcat_iis_connector), then edit the isapi_redirect.properties file and ensure that the log_file, worker_file, worker_mount_file and rewrite_rule_file properties point to the correct location.
  5. If your ADSS Server is not running on the same server as IIS (for example, if ADSS Server is running on a non-Windows server), then edit the worker.properties.minimal file in the conf directory so that the worker.worker1.host property points to the IP address or host name of your ADSS Server.

Add ISAP Filter

  1. If the ISAPI Filter element is not installed on your IIS system then click here for help
  2. Open the Internet Information Services (IIS) Manager.
  3. In the 'Connections' panel, ensure that the IIS Web Site that will be used to proxy ADSS Server requests is selected.
  4. Double-click the 'ISAPI Filters' icon in 'Features View'.
     


  5. In the 'Actions' panel on the right, select 'Add'.
  6. Set the 'Filter name' to 'tomcat' and set the 'Executable' to the isapi_redirect.dll that you downloaded in step 1.
     


  7. Click 'OK'.
  8. The new filter should now be listed in the ISAPI Filters list for the website.

 

Add Virtual Directory

Now you will add a virtual directory in the IIS website to host the ISAPI Filter.

  1. In the 'Connections' panel, ensure that the correct IIS Web Site is selected.
  2. Right-click the IIS Web Site and select 'Add Virtual Directory'.



  3. Set the 'Alias' to 'jakarta'.
  4. Set the 'Physical Path' to the directory where you extracted the ISAPI Filter in step 1 (such as, C:\tomcat_iis_connector).
  5. Click 'OK'.
  6. Verify that a 'jakarta' virtual directory is now present under the selected website. 



  7. Next, select the 'jakarta' virtual directory in the 'Connections' panel.
  8. Double-click the 'Handler Mappings' icon in the 'Features View'.
  9. Click the 'Edit Feature Permissions' link in the 'Actions' panel.
  10. Ensure that the 'Execute' option is selected.



  11. Click 'OK'.

Register the ISAPI Extension

Now you will register the isapi_redirect.dll as an authorised ISAPI Extension.

  1. In the 'Connections' panel, ensure that the local IIS Server is selected.
  2. Double-click the 'ISAPI and CGI Restrictions' icon in 'Features View'. 



  3. Click 'Add' in the 'Actions' panel.
  4. Set the 'ISAPI or CGI path' to the isapi_redirect.dll you downloaded in step 1.
  5. Set the 'Description' to 'tomcat'.
  6. Ensure that the 'Allow extension path to execute' is selected.



  7. Click 'OK'.
  8. Verify that the new ISAPI restriction is listed in the table with a restriction of 'Allowed'.

 

Icon

If you only wish to access the ADSS Server services over non-SSL channels then you can jump to step 7 i.e. restart IIS and step 5 and 6 can be safely ignored.  If you also need to access the ADSS services or the ADSS Server console on a secure SSL channel then you should additionally follow the instructions in steps 5 and 6 below.

 

Adding Binding for HTTPS

  1. In the 'Connections' panel, ensure that the correct IIS Web Site is selected.
  2. In the 'Actions' panel, under 'Edit Site', click on 'Bindings'.



  3. Click on 'Add' button.
  4. Select 'Type' as 'https', select to use default SSL 'Port' as 443 and also select an 'SSL Certificate' from the drop down.



  5. Click 'OK'.
  6. Verify that a new binding has been added for https.

     

SSL Settings

  1. In the 'Connections' panel, ensure that the correct IIS Web Site is selected.
  2. Click on 'SSL Settings' in the Features View.


  3. In the 'SSL Settings' area select to 'Accept' client certificates.
  4. Click on the 'Apply' button in the 'Actions' area. 

 

Restart IIS

In the 'Connections'  panel right click on the connection for the IIS local machine and Stop it and then Start and you are DONE. 

Configuring Load-balancer using Tomcat Connector for IIS 7 or above 

The following steps show how you can configure a load-balancer using Tomcat connector with IIS 7 or above to load-balance the traffic between two or more ADSS Servers:

  1. Follow the above article to configure the Tomcat connector.
  2. Now take a backup of the tomcat_iis_connector/conf/uriworkermap.properties file and then replace the following content in it and save the file:

    uriworkermap.properties


  3. After that, take a backup of the tomcat_iis_connector/conf/workers.properties.minimal file and then replace the following content in it and save the file:

    uriworkermap.properties

     

  4. Restart the IIS Server for the changes to take effect

  5. Sending the requests at the URL configured in the above article will redirect the requests to either server.


  • No labels