Chat now with support
Chat with Support

Foglight for Virtualization Enterprise Edition 8.6 - Security and Compliance Guide

Security overview
Foglight security measures Customer security measures Security features in Foglight Disclaimer
Security features for APM appliances Usage feedback Appendix: FISMA compliance

Enabling FIPS 140-2 mode for HTTPS traffic

Some customers require that all network traffic be protected with FIPS 140-2 compliant ciphers. The following procedure can be used to configure the Foglight™ Management Server to permit the use of specific TLS cipher suites only for communications with its Web server (all traffic over HTTPS).

1
On the Management Server, open the <foglight_home>/server/tomcat/server.xml file for editing.
2
In the server.xml file, locate the following Connector element:
<Connector executor="tomcatThreadPool" maxHttpHeaderSize="8192"
3
Add the following ciphers attribute to the Connector element:

Network ports

The Foglight™ installation process allows you to configure port assignments. The default ports are displayed during installation.

Default port assignments

Embedded PostgreSQL®

15432

Incoming/Outgoing

Cluster Multicast

45566

Incoming/Outgoing

HTTP

8080

Incoming

HTTPS

8443

Incoming

AJP13

8009

Incoming

JNDI RMI

1098

Incoming/Outgoing

JNDI JNP

1099

Incoming/Outgoing

JRMP Invoker

4444

Incoming/Outgoing

JRMP Pooled Invoker

4445

Incoming/Outgoing

JRMP Unified Invoker

4448

Incoming/Outgoing

HA JNDI RMI

1101

Incoming/Outgoing

HA JDNI JNP

1100

Incoming/Outgoing

HA JRMP Invoker

4447

Incoming/Outgoing

HA Pooled Invoker

4446

Incoming/Outgoing

HA JNDI UDP Group

1102

Incoming/Outgoing

High Availability (HA) refers to running a secondary instance of Foglight as a failover backup server (redundant mode). Foglight listens to the multicast port (45566) only when configured for HA mode.

External PostgreSQL®

5432

Outgoing

Microsoft® SQL Server®

1433

Outgoing

Oracle®

1521

Outgoing

Agent adapter ports

Agent Manager

8080

Incoming

Agent Manager over SSL

8443

Incoming

Java EE Technology Agent

41705

Incoming

Related Documents

The document was helpful.

Select Rating

I easily found the information I needed.

Select Rating