Updated on 2024-08-14 GMT+08:00

Enabling Dynamic WTP

Dynamic WTP protects your web pages while Tomcat applications are running, and can detect tampering of dynamic data, such as database data. It can be enabled with static WTP or separately.

Constraints and Limitations

Only the servers that are protected by the HSS WTP edition support the operations described in this section.

Prerequisites

You are using a server running the Linux OS.

Procedure

  1. Log in to the management console.
  2. Click in the upper left corner of the page, select a region, and choose Security > Host Security Service.
  3. Choose Prevention > Web Tamper Protection, click Servers tab page and click Configure Protection in the Operation column.
  4. On the Configure Protection tab, toggle on to enable Dynamic WTP.
  5. In the displayed dialog box, modify the Tomcat bin Directory.

    To enable dynamic WTP, you need to modify the Tomcat bin directory first. The system presets the setenv.sh script in the bin directory for setting anti-tamper program startup parameters. After enabling dynamic WTP, restart Tomcat to make this setting take effect.

  6. Click OK to enable dynamic WTP.