Updated on 2024-03-28 GMT+08:00
Enabling Dynamic WTP
Dynamic WTP protects your web pages while Tomcat applications are running, and can detect tampering of dynamic data, such as database data. It can be enabled with static WTP or separately.
Constraints and Limitations
- Only the servers that are protected by the HSS WTP edition support the operations described in this section.
- Dynamic WTP can be provided only for Tomcat of JDK 8.
Prerequisites
You are using a server running the Linux OS.
Procedure
- Log in to the management console.
- In the upper left corner of the page, select a region, click
, and choose Security & Compliance > HSS. - Choose Prevention > Web Tamper Protection, click Configure Protection.
If your servers are managed by enterprise projects, you can select an enterprise project to view or operate the asset and scan information.
Figure 1 Entering the page for protected directory settings
- On the Configure Protection tab, toggle on
to enable Dynamic WTP.
Figure 2 Enabling Dynamic WTP
- In the displayed dialog box, modify the Tomcat bin Directory.
To enable dynamic WTP, you need to modify the Tomcat bin directory first. The system presets the setenv.sh script in the bin directory for setting anti-tamper program startup parameters. After enabling dynamic WTP, restart Tomcat to make this setting take effect.Figure 3 Configuring a Tomcat directory
- Click OK to enable dynamic WTP.
Feedback
Was this page helpful?
Provide feedbackThank you very much for your feedback. We will continue working to improve the documentation.See the reply and handling status in My Cloud VOC.
The system is busy. Please try again later.
For any further questions, feel free to contact us through the chatbot.
Chatbot
