Having successfully configured the web portal to use SSL and a certificate issued by my internal CA infrastructure I thought I was home and dry with this product.
The very next issue was getting the RDP gateway working. PMP uses a web portal sitting on port 7273 to provide an RDP and SSH client to the PMP user. It’s a great idea but when I tried to use it the tab was closed immediately. I say immediately what happens is you get a popup message box asking if it’s OK to shut the tab. It doesn’t matter what you click it won’t work.
On the password tab there is a hyperlink “Trouble Shoot Auto Logon Issues” click this and another browser ( with no URL bar ) opens and displays a certificate error. Unfortunately you can;’t view the cert and the error doesn’t really tell you what the problem is. THATS USEFUL MICROSOFT!
I used Chrome and that allowed me to see the certificate. BOOM! it’s self signed and that’s why it’s not working.
So why oh why doesn’t ManageEngine tell you how to configure the RDP gateway to use the same certificate as the web portal?
The fix ( provided by ManagedEngine by the way ) is to edit the wrapper.conf file in the <PMP Install Directory>conf folder.
(Make a copy first in case you mess this up of course) You need to locate the following elements and change them to reflect the certificate.
wrapper.java.additional.21=-Djavax.net.ssl.keyStore=../conf/server.keystore change server.keystore to your .pfx file created in my other post.
wrapper.java.additional.22=-Djavax.net.ssl.keyStorePassword=passtrix and change passtrix to the password you used to secure the private key in the .pfx file.
wrapper.java.additional.23=-Djavax.net.ssl.keyStoreType=<keyType> change this to PKCS12
Restart PMP and it should all start working. MAGIC!