Add a Fortified ID virtual host

Scenario

When Apache Web server is installed and you have added a certificate file you need to configure what to reverse proxy. This is an example for all Fortified ID product reversed proxied.

Prerequisite

• Windows server 2019 or later

• Make sure you completed use case Add SSL certificate

Configure a Apache Web server virtual host

1. Open file c:\Apache24\conf\httpd-ssl.conf

2. Scroll to bottom of the file.

3. The file ends with the ending of the default virtual host

   Copy

   </VirtualHost>

4. Put the curser right above the VirtualHost ending.

5. Paste the following section to add the reverse proxy parameters for the Fortified ID products

6. Paste the following section to add the reverse proxy parameters for the Fortified ID products

   Copy

   
   # Enable Proxy
   ProxyPreserveHost On
   # Incoming. Example host and port, http://FID_SERVER:PORT/
   # Only enable below what you like to be accessed from outside
   
   # Enable Fortified ID Portal
   ProxyPass "/portal" "http://localhost:8090/portal"
   
   # Enable Fortified ID Web/IdP
   ProxyPass "/saml/" "http://localhost:8080/saml/"
   
   # Enable Fortified ID Password Reset
   ProxyPass "/pwdreset" "http://localhost:8091/pwdreset"
   
   # Enable Fortified ID Enrollment (OATH_SW, OATH_HW, Passkeys, MobileID)
   ProxyPass "/enrollment/" "http://localhost:9090/enrollment/"
   
   # Enable Fortified ID MobileID - MOS server
   ProxyPass "/mos" "http://localhost:9097/mos"
   
   # Enable Fortified ID MobileID - MOS client
   ProxyPass "/mosclient/" "http://localhost:9096/mosclient/"
   

7. In the example above you might need to adjust the URL to the different services to map your environment. If you have any other service that you want proxypass, just add it accordingly in the file.

8. Locate the line ServerName www.example.com:443. Update the line with example below. Change dev.fortifiedid.se to the server name you use.

   Copy

   ServerName dev.fortifiedid.se:443

9. Save file

10. Start service Apache HTTP Server

11. Test your configuration from a browser outside the server

12. If things does not work:

    1. Check any firewall that might prevent communication

    2. Check Apache Web Server log-files in C:\Apache24\logs