The Broker requires external network connectivity in order to communicate with Service Provider endpoints such as Buttonwood Core Services and Cloud Service Providers.
This procedure describes how to configure the Broker virtual appliance to use a network proxy where it is required for Internet connectivity.
The article Security Requirements - Firewall and Proxy provides guidance on URLs which may need to be whitelisted on the proxy server configuration.
Prerequisites
- Administrative access to the Admin Console UI
- Proxy host and port
- Proxy authentication details
Configuration Steps
- Log in to the Admin Console UI
- Navigate to Network
- Select the Proxy tab
- Check the checkbox for Proxy Enabled, and provide the following information
- Proxy Host: Hostname or IP address of the proxy server
- Proxy Port: Port number used by the proxy server to accept connections
- Proxy Bypass Addresses: A comma separates list of IP addresses or domain namespaces where the proxy is bypassed when accessed
- Authentication:
- None: Access the proxy without authentication
- Certificate: Access the proxy server subject to https inspection
- Authentication Certificate: The content of the public certificate that the proxy server uses for https inspection, ensuring that the
---BEGIN CERTIFICATE--- and ---END CERTIFICATE--- delimiters are present
- Authentication Certificate: The content of the public certificate that the proxy server uses for https inspection, ensuring that the
- Basic: Access the proxy server using a username and password
- Username: Username of the account to be authenticated with the proxy server
- Password: Password of the account to be authenticated with the proxy server
- Click Apply Changes
- A status bar will appear, confirming the configuration changes
- Restart the Broker Application Service