Typically with services that use a forwarding proxy, there is a specific proxy configuration done within the application, but the Universal Orchestrator Keyfactor orchestrators perform a variety of functions, including managing certificate stores and SSH key stores. doesn't have such a configuration. Instead, it makes use of an environment variable to retrieve this information on either Windows or Linux.
 Keyfactor orchestrators perform a variety of functions, including managing certificate stores and SSH key stores. doesn't have such a configuration. Instead, it makes use of an environment variable to retrieve this information on either Windows or Linux.
On Windows, configure a system environment variable of either HTTP_PROXY or HTTPS_PROXY (this is not case sensitive on Windows) pointing to your proxy's URL, including port, then restart the Universal Orchestrator service if the orchestrator is already installed.
                                                                 
                                                            
Figure 643: System Environment Variable to Define a Proxy URL for Use by the Universal Orchestrator on Windows
On Linux, there are multiple approaches to setting an environment variable. One method for setting a system-wide environment variable that will be retained after reboot is to add an environment variable statement to the /etc/environment file using a command similar to the following (as root):
After setting the environment variable, restart the Universal Orchestrator service if the orchestrator has already been installed.
 TLS (Transport Layer Security) and its predecessor SSL (Secure Sockets Layer) are protocols for establishing authenticated and encrypted links between networked computers.), you will most likely also need an HTTP_PROXY environment variable for the orchestrator to do revocation status (CRL
 TLS (Transport Layer Security) and its predecessor SSL (Secure Sockets Layer) are protocols for establishing authenticated and encrypted links between networked computers.), you will most likely also need an HTTP_PROXY environment variable for the orchestrator to do revocation status (CRL A Certificate Revocation List (CRL) is a list of digital certificates that have been revoked by the issuing Certificate Authority (CA) before their scheduled expiration date and should no longer be trusted.) checking unless you disable revocation status checking.
 A Certificate Revocation List (CRL) is a list of digital certificates that have been revoked by the issuing Certificate Authority (CA) before their scheduled expiration date and should no longer be trusted.) checking unless you disable revocation status checking.