TLS offloading
Apache Tomcat
Before you start
6 min
verify your environment meets these requirements supported hardware {{ch}} , 7 0 2 x or later supported operating systems linux windows required access an account on the {{ch}} with administrator permissions to deploy new services local administrator/root access on the computer where apache tomcat is installed network and firewall allow outbound tcp port 2001 (default host api port) from the computer running apache tomcat to the {{ch}} , specified by fqdn (for example, cryptohub example com ) or cidr (for example, 10 0 0 0/24 ) tls inspection or ssl proxies can break mutual tls handshakes exempt the {{ch}} fqdn(s) from inspection configure the {{ch}} with a fqdn so the exemption applies other apache tomcat tomcat 9 0 x supports java 8 and later tomcat 10 1 x requires java 11 and later tomcat `11 0 x requires java 17 and later