1. Home
    2. Security Operations
    3. Cortex XSOAR
    4. Cortex XSOAR Administrator’s Guide
    5. Single Server Deployment
    6. Post-Installation Checklist
    7. Configure the Cortex XSOAR Server to Listen on HTTP
    End-of-Life (EoL)

    Configure the Cortex XSOAR Server to Listen on HTTP

    Configure the Server to listen on an HTTP endpoint.
    By default, the Cortex XSOAR Server listens only on an HTTPS endpoint (default port 443). In some scenarios you may wish to configure the Cortex XSOAR Server to listen on an HTTP endpoint. For example, when deploying the Cortex XSOAR Server behind a web gateway which performs HTTPS termination, it may require communicating with the back-end server via HTTP.
    If you require the Server to listen on an HTTP endpoint, you need to change the server to start up with the
    -insecure
     command line argument.
    When you enable the
    -insecure
     command line argument, the Server sends web cookies without the
    Secure
     attribute, as it is not supported by HTTP endpoints. When the command line argument is disabled and only HTTPS is available (default configuration), web cookies are sent with the
    Secure
     attribute. If you require using HTTPS, it is recommended to disable the
    -insecure
     command line argument for enhanced cookie security.
    1. Change the server to startup with the following
      -insecure
       command line argument.
      For example, if using
      systemd
       to manage the server process, edit the
      /etc/systemd/system/demisto.service
       file and change the line that starts with
      ExecStart
       to include the
      -insecure
       flag.
      For example,
      ExecStart=/usr/local/demisto/server -insecure
    2. Run the following commands to reload and restart the service.
      • sudo systemctl daemon-reload
      • sudo systemctl restart demisto
    3. If you need to change the port (by default, the server listens on port 8080 for HTTP), edit the
      /etc/demisto.conf
      file by updating the
      “HttpPort”:
      “<desired_port>”
      ,
       in the
      Server
       map. For example: 
      {
   "Server" : {
         "HttpPort": "80"
         //... Other Server configurations
   }
}
    4. After saving the
      /etc/demisto.conf
       file, restart the server.

    Recommended For You

    Recommended Videos

    Recommended videos not found.

    © 2022 Palo Alto Networks, Inc. All rights reserved.

    Techdocs Logo