FAQ (Windows)
This section is to address issues faced when JET is installed on windows server
Table of Contents
When emails are not being sent.
- Open a browser page and run the page “…/JET/scheduler.php” without closing it.
How to install SSL Certificate in Windows (apache)
httpd.conf
Step 1: Uncomment the below lines
LoadModule ssl_module modules/mod_ssl.so
LoadModule socache_shmcb_module modules/mod_socache_shmcb.so
Include conf/extra/httpd-vhosts.conf
Step 2: Replace <Directory /> with the following
<Directory />
AllowOverride All
Require all granted
</Directory>
Step 3: Replace last line of <Directory “${INSTALL_DIR}/www/”> with the following
Require all granted
Step 4: Replace <Directory “${SRVROOT}/cgi-bin”> with the following
<Directory "${SRVROOT}/cgi-bin">
AllowOverride None
Options None
Require all granted
</Directory>
httpd-ssl.conf
Step 1: Replace SSLSessionCache with the below
SSLSessionCache "shmcb:C:/<folder>/bin/apache/apache<version>/logs/ssl_scache(512000)"
<folder> is the root folder where you install your apache.
<version> is your apache version
Step 2: Replace <VirtualHost _default_:443> with the below
<VirtualHost _default_:443>
DocumentRoot "C:/<folder>/www"
ServerName demo.jetworkflow.com:443
ServerAdmin admin@example.com
ErrorLog "C:/<folder>/bin/apache/apache<version>/logs/error.log"
TransferLog "C:/<folder>/bin/apache/apache<version>/logs/access.log"
<Directory "c:/<folder>/www/">
Options +Indexes +Includes +FollowSymLinks +MultiViews
AllowOverride All
Require all granted
</Directory>
<folder> is the root folder where you install your apache.
<version> is your apache version
In this example, we use our demo server URL demo.jetworkflow.com
Step 3: Update certificate lines
SSLCertificateFile "C:/<folder>/bin/apache/apache<version></version>/conf/key/certificate.crt"
SSLCertificateKeyFile "C:/<folder>/bin/apache/apache<version>/conf/key/certificate.key"
SSLCertificateChainFile "C:/<folder>/bin/apache/apache<version>/conf/key/ca_certificate.crt"
<folder> is the root folder where you install your apache.
<version> is your apache version
If your certificate is in a different folder, you can specify a different folder for this.
Step 4: Replace Customlog with the below
CustomLog "C:/<folder>/bin/apache/apache<version>/logs/ssl_request.log" \
"%t %h %{SSL_PROTOCOL}x %{SSL_CIPHER}x \"%r\" %b"
<folder> is the root folder where you install your apache.
<version> is your apache version
httpd-vhosts.conf
Step 1: Replace fully with the below.
<VirtualHost *:80>
ServerName lc.jetworkflow.com
DocumentRoot "c:/<folder>/www"
<Directory "c:/<folder>/www/">
Options +Indexes +Includes +FollowSymLinks +MultiViews
AllowOverride All
Require all granted
</Directory>
</VirtualHost>
<folder> is the root folder where you install your apache.
<version> is your apache version
Restart the apache service after this.
Apache/php version hiding
Update ServerSignature and ServerTokens with the following.
ServerSignature Off
ServerTokens Prod
How to hide server default page or the root directory from the root of your website?
Edit the httpd-vhosts.conf file
<VirtualHost *:80>
Redirect permanent / https://www.yourdomain.com/
RedirectMatch ^/$ /JET/
</VirtualHost>
Edit the httpd-ssl.conf file
<VirtualHost *:443>
RedirectMatch ^/$ /JET/
</VirtualHost>
Please add the Redirect and RedirectMatch lines into the existing lines.
Redirect will force your website to use https
RedirectMatch will redirect your root directory accordingly.
Security Updates (Apache)
httpd.conf
Step 1: Uncomment the below lines.
LoadModule ssl_module modules/mod_ssl.so
LoadModule socache_shmcb_module modules/mod_socache_shmcb.so
Include conf/extra/httpd-vhosts.conf
Step 2: Replace <Directory /> with
<Directory />
AllowOverride All
Require all granted
</Directory>
Step 3: Replace last line of <Directory “${INSTALL_DIR}/www/”> with
Require all granted
Step 4: Replace <Directory “${SRVROOT}/cgi-bin”> with
<Directory "${SRVROOT}/cgi-bin">
AllowOverride None
Options None
Require all granted
</Directory>
httpd-ssl.conf
Update the below lines.
SSLCipherSuite ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES256-GCM-SHA384:ECDHE-ECDSA-AES128-SHA:ECDHE-ECDSA-AES256-SHA:ECDHE-ECDSA-AES128-SHA256:ECDHE-ECDSA-AES256-SHA384:ECDHE-RSA-AES128-GCM-SHA256:ECDHE-RSA-AES256-GCM-SHA384;DHE-RSA-AES128-GCM-SHA256:DHE-RSA-AES256-GCM-SHA384
SSLProxyCipherSuite ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES256-GCM-SHA384:ECDHE-ECDSA-AES128-SHA:ECDHE-ECDSA-AES256-SHA:ECDHE-ECDSA-AES128-SHA256:ECDHE-ECDSA-AES256-SHA384:ECDHE-RSA-AES128-GCM-SHA256:ECDHE-RSA-AES256-GCM-SHA384;DHE-RSA-AES128-GCM-SHA256:DHE-RSA-AES256-GCM-SHA384
SSLProtocol all -SSLv3 -TLSv1 -TLSv1.1
SSLProxyProtocol all -SSLv3 -TLSv1 -TLSv1.1
php.ini
Update the below lines.
expose_php = Off
max_execution_time = 3600
max_input_time = 3600
post_max_size = 2000M
upload_max_filesize = 2000M
default_socket_timeout = 3600
session.cache_expire = 3600
date.timezone = Asia/Singapore
session.cookie_httponly = 1
session.use_only_cookies = 1
session.cookie_secure = 1
