Installing Reflection

Running the Certificate Wizard

If you plan to use HTTPS to access the web application, you must enable HTTPS on the servlet runner. During the automated installation, a self-signed certificate is created for the Tomcat servlet runner, and you can skip this step. If you install Reflection Administrator and the servlet runner using archive files, you must create or import a certificate with the Certificate Wizard. You can run the Certificate Wizard at any time to manage the servlet runner certificate.

You can configure Reflection to use either a self-signed certificate, or a Certificate Authority (CA) signed SSL server certificate. For details regarding Tomcat and CA-signed certificates, see External Web SiteTechnical Note 1702.

Running the Certificate Wizard

Windows automated installation:

Note: To run the Certificate Wizard using the Sun Java Plug-in, you must use version 1.3.x or higher of the plug-in. This command must be run from the console or from a graphical user interface, such as Reflection X.

Windows manual installation:

  1. Navigate to [management server installation path]\jakarta-tomcat-[version number]\WRQUtilities\.

  2. At the prompt, enter: java -cp .\KeyToolsPro_jce1-2-1_1of2_signed.jar;.\CertWizard.jar run

    Note: On some systems, you may need to remove run from the command.

UNIX or Linux automated installation:

  1. Navigate to [management server installation path]/utilities/.

  2. Run the file.

UNIX or Linux manual installation:

  1. Navigate to [management server installation path]/jakarta-tomcat-[version number]/WRQUtilities/.

  2. At the prompt, enter: java -cp ./KeyToolsPro_jce1-2-1_1of2_signed.jar:./CertWizard.jar run

Follow the prompts in the wizard to generate a new certificate, import a CA-signed certificate, update the existing certificate, or copy the management server certificate.


Once your server supports HTTPS, use the Administrative WebStation to restrict Reflection to the HTTPS protocol.

  1. Choose Security Setup on the navigation bar or home page.

  2. Choose the Security tab.

  3. In Choose management server access protocol, choose HTTPS (SSL - recommended).

  4. Click Save Settings.

Where To Go Next