Release 8.1.0.0 > Updates in this Release > Security Deployment Instructions for Arbortext Publishing Engine
  
Security Deployment Instructions for Arbortext Publishing Engine
Using HTTPS
In Arbortext 8.1.0.0 HTTPS is on by default. To set up the Arbortext Publishing Engine, if certificate is not available you must generate a certificate for the server and point Tomcat to the keystore containing it. The certificate must be imported into the Trusted store of the Java used by Arbortext Editor and/or Windchill if publishing is performed from either of these clients. For more information on disabling HTTPS and generating the certificate, see “Disabling HTTPS”, in the PTC Arbortext Help Center. For more information about setting up Apache Tomcat using HTTPS, refer to the section ‘SSL/TLS Configuration’ from the documentation provided for Tomcat by the Apache Software Foundation.
Setting up the Security Framework
The security framework is enabled by default. You can enable or disable the security framework by setting the com.arbortext.e3.enableSecurityFramework property to true or false, respectively. The property e3config.xml file is in the folder Arbortext PE\e3\e3\WEB-INF. When the security framework is configured, you must have a user with the Arbortext Publishing Engine administrator role to access parts of the Publishing Engine user interface. For more information, see “Enabling and Disabling the Security Framework”, in the PTC Arbortext Help Center.
Logging Improvements
The logs have been modified to include less information out-of-the-box. No changes are required, but administrators can include more information by modifying the log level parameters in the e3config.xml settings. The com.arbortext logger in the log4j2.xml settings can also be changed. For more information, see “The Global Application Logging Parameters”, in the PTC Arbortext Help Center.
Using Trusted Host Authentication
You must use trusted host authentication, and the Windchill auth.properties file must not contain a password. If you cannot use the trusted host authentication, set the e3 configuration property com.arbortext.e3.allowAuthenticationWithoutTrustedHost in the e3config.xml file. For more information on configuring the auth.properties, see “Configuring Arbortext Publishing Engine for the Windchill Visualization Service”, in the PTC Arbortext Help Center.