Configuring HTTP settings for the Delphix Engine
Security / Product Security / Certificate Management / Configuring Network Security Settings / Configuring HTTP settings for the Delphix Engine

Use the following steps to configure HTTP settings for the Delphix Engine.

  1. Login to the Delphix Engine Setup UI as a sysadmin.

  2. From the Dashboard under Network Security select Settings. This will open a new wizard where you can modify the settings. 


  3. In the Network Security Settings screen, you can modify the HTTP mode, TLS Version, and HTTPS Ciphers to be used.

  4. In HTTP mode, select one of the following:
    • HTTP Only: accepts only HTTP connections.
    • HTTPS Onlyaccepts only HTTPS connections.
    • HTTP Redirect: Redirect all requests made over HTTP to HTTPS.
    • HTTP and HTTPS: accepts both HTTP and HTTPS connections.
    • HTTP Redirect with HSTS: redirect all requests made over HTTP to HTTPS and add Strict-Transport-Security Header to all responses.
  5. In TLS Version, select the required TLS versions.
  6. In HTTPS Ciphers, select the required option from the drop-down list. Select the check box next to Select All if you want to select all the options.

  7. Click Next and then click Submit to allow your engine to restart for the changes to take effect.

  8. When the Delphix Engine homepage is loaded after the restart, all the HTTP requests will be redirected to the selected HTTP mode after the first load.

The above steps might not work if:

  1. The certificates are not trusted - ‘not secure’ warning on the search bar of the browser. Certificate setup should be completed before setting up HSTS headers for them to be useful - otherwise, the redirect will still happen over 302 status.

  2. Your site is not prepared for HTTPS setup - i.e., each of the subdomains accessed should be supporting HTTPS - parts of the application might be inaccessible otherwise.

  3. Every first request whenever the cache is cleared would redirect over 302. Any further requests after the first would redirect over 307.

Don’t want to use HSTS?

  1. By default engine is set up to ‘HTTP and HTTPS’. You can leave the engine as it is and not make any changes.

  2. If you set up HSTS and want to revert it, the same steps for setup can be followed from above, and select your previous option on step 3.

Related Topics