A number of customers have upgraded Tomcat 8.5 that comes with Dimensions CM to newer 8.5.x versions in order to resolve some vulnerabilities. However, after Tomcat is upgraded some of the Connectors fail to start up. Tomcat logs include the following errors:
The SBM installer creates a shortcut named "Tomcat 7.0" in the [sbm]\common\ directory. The Tomcat 7.0 short points to the tomcat directory, and we are running tomcat 8.5 .x. However, security scans of hard drives may find this to be an issue.
The steps to automatically redirect to Dimensions CM login are: 1. Stop Tomcat 2. rename ...common\ tomcat \ 8.5 \webapps\ROOT\index.html to index.html_orig
The main concern with tomcat versions prior to 8.5.51 is the AJP connector, which is not used by Dimensions CM. Therefore we recommend this is commented out from tomcat / 8.5 /conf/server.xml. 1/ Stop the Micro Focus Tomcat service
The resolution can combine options if Tomcat and IIS are installed on the same system. For instance, you can use both option 2 and option 3 to restrict access to AJP. SBM 11.8 uses a version of Tomcat 8.5 that is not affected, but it still implements an AJP secret using the SBM Configurator > Security section.
NOTE: Do not move everything under Vendor Programs, we are only moving DA-Profile folder. 3) Navigate to the Tomcat home folder D:\Program Files\Micro Focus\common\ tomcat \ 8.5 \webapps\da\configuration Edit the file installed.properties
... issue in VM 8.5 .3: ... : Upgrade to Tomcat 7.0 ... ... works on any 8.5 .x release ... tested on VM 8.5 .3, ... cumulative and can be installed independent of VM 8.5 .3 Patch 001 through 004, though we recommend the use of VM 8.5 .3 Patch 004 on top of VM 8.5 .3 . ... Specify the directory where VM 8.5 is installed in. ... It should list Apache Tomcat 7.0.82
