Requirements for Reverse Proxy for CHILI Server

IIS ports accessing CHILI over the WebCenter web server should be:

80 for IIS http
443 for IIS https

The https ports must have a security certificate attached to it in order to be able to work with Web Server.

Note: The best practise is to install a properly signed certificate, matching the CHILI server hostname (NOT the tricked hostname) on the CHILI server. In this scenario, the validation of the SSL certificate will be smooth when the WebCenter Application Server makes a connection to it.

Alternatively, you may use a self-signed certificate. However, these are NOT supported for the WebCenter Web Server. You may get SSL validation errors when the WebCenter Application Server tries to connect to the CHILI server due to this.

As a work-around, use the WebCenter LDAP CertInstall tool:

Go to the <Installation Directory>\ApplicationServer\LDAP.
Run the following command:
```
CertInstall.bat <chiliserver>:443
```
Select the right certificate to install by entering a digit.
Restart the JBoss.

This will solve the SSL validation problems.