TLS Wizard

This is a GUI app to enable TLS for WildFly.

How to run the application

Use this application to configure one-way TLS for applications deployed on WildFly. Two-way TLS is WIP.

Prerequisites

1. WildFly is installed.

2. Maven is installed.

Procedure

1. Start the server.

2. Navigate to the directory tlswizard.

3. Launch this app with the command:

   $ mvn clean javafx:run

   This launches the TLS Wizard.

4. Enter the IP for the server. The default is 127.0.0.1 (localhost). For local WildFly deployments, you don’t need to update this.

5. Select One-way TLS or Two-way TLS to configure One-way TLS or Two-way TLS.

6. Select applications or management interfaces to secure applications or management interfaces.

7. Click Next.

   • If you selected One-way TLS:

     1. Enter a name for the key store to create with .pkcs12 extension.

     2. Enter details for the certificate to be generated. If you don’t, all the values are set to unknown.

     3. Click Configure TLS.

     4. To verify TLS, do this:

        • If you secure applications: Navigate to https://localhost:8443. Inspect the certificate. The Common Name (CN) should match the first and last name you entered.

        • If you secured the management interface: Navigate to http://localhost:9990. You will be redirected to localhost:9993 Inspect the certificate. The Common Name (CN) should match the first and last name you entered.

   • That’s it! one-way TLS is now enabled.

   • If you selected Two-way TLS:

     • You are directed to a page with Work in Progress. You can click Back to go back to the home page.