Change HTTP port for PhenixID Server

This article will describe how to change HTTP port used by PhenixID Server.

Before making any changes to the configuration, please make sure to have backup of the file/files.

System requirements

  • PhenixID Server installed.

Overview

The port used by PhenixID Server can be set during installation.

This port is set for the default prism module used for the administration GUI.

If the port needs to be changed after installation, please follow the instructions below.

There is no user interface to change boot configuration - you’ll need to edit the configuration (boot.json) manually.

If other prism modules is used, like MFA Admin or Self Service, they will by default use "Default HTTP connection". If this is not a desired port please follow the instructions in the section "Change port for PAS web applications". This change will be made using the configuration GUI.

Create new http connection with desired port

In the Configuration gui, go to Connections/HTTP.
Create a new connection, set the name, port and enable SSL/TLS if desired.
If SSL/TLS should be enabled, set "SSL Keystore" to the certificate that should be used.
Follow this guide to upload the certificate as a PhenixID keystore.
Copy the id of the new connection, it will be used in next step, where we set this connection for Configuration Manager.

Set Configuration Manager to use the new http connection/port

Best practice is to use a separate port for Configuration Manager, more information here.

So we can now configure this new connection for use with Configuration Manager.
This is done in boot.json, so make sure to have a backup/copy of this file before doing the changes.

  • If present, remove all "ssl" parameters e.g. "ssl":"true"
  • If present, remove all "port" parameters e.g.  "port":"8443"
  • Add the previously configured http configuration to phenixidentity~phenix-prism by setting "httpConfig":"<ID_OF_HTTPConnection>"

Configuration should now look like this:

When done, save the file and restart the service.

Change port for PAS web applications

To set a new port for the different PAS applications, create a new connection like the step above, but on different port. Then go to the Advanced tab of the specific application and choose the newly created HTTP connection.