Copyright © TIBCO Software Inc. All Rights Reserved
Copyright © TIBCO Software Inc. All Rights Reserved


Chapter 1 Preparing Databases and Web Containers for Deployment : Securing TIBCO ActiveMatrix Runtime UDDI Server

Securing TIBCO ActiveMatrix Runtime UDDI Server
The following functions help you secure TIBCO ActiveMatrix Runtime UDDI Server.
Setting the Default Administrator User
During the TIBCO ActiveMatrix Runtime UDDI Server configuration, you are required to provide the username and password of the default administrator. The default values for the administrator are the username 'admin' and the password 'admin'. For detailed information, refer to Configure the Server Root User and Password.
Encrypting a Password for the UDDI Server
When connecting to TIBCO ActiveMatrix Runtime UDDI Server, you are required to provide a username and password. You can encrypt your password for greater security.
To encrypt your password, follow these steps:
1.
Open a Command Prompt and change the path to: TIBCO_HOME/RuntimeUDDIServer/3.1/bin
2.
Run uddiant encrypt
The following prompts appear in the command line window:
Enter the relative or absolute path of a valid file where your clear-text password is saved. The clear-text password is saved in the text file.
For example: TIBCO_HOME\RuntimeUDDIServer\3.1\sample_password.txt.
The content of the sample_password.txt file is shown below:
#!yourPassword1
#!!yourPassword2
#! and #!! are the two prefixes of your passwords and they are also reserved symbols. They must not be used in your password. The encrypted password with the #! prefix can be used by other computers. The encrypted password with the #!! prefix can only be used on your computer where you encrypt your password.
Enter the relative or absolute path of a valid file where your encrypted password will be saved.
To avoid user interaction, enter the following parameters as the command line arguments.
uddiant encrypt -Dfile=fileName -Doutput=outputFileName
After encrypting the password, replace the clear-text password with the encrypted password. For example, the clear-text password can be replaced in the uddi.properties file that is available from the following directory: TIBCO_HOME\RuntimeUDDIServer\3.1\script\client
Encrypting the Database Password
In TIBCO ActiveMatrix Runtime UDDI Server, you can implement your own factory to encrypt the database password used in the JNDI resource configuration file.
For detailed information, refer to the Apache Tomcat and JBoss documentation.
SSL Support
SSL (Secure Socket Layer) technology allows web browsers and web servers to communicate over a secure connection.
If you want to access TIBCO ActiveMatrix Runtime UDDI Server using SSL support, you must export the certificate from the server and import it to your client machine. For detailed information, refer to TIBCO ActiveMatrix Runtime UDDI Server User’s Guide.
For Apache Tomcat
To enable SSL on Apache Tomcat, uncomment the SSL/TLS connector in TOMCAT_HOME/conf/server.xml and change the values of the keystorFile and keystorPass properties to your actual values.
For example:
If your keystore named uddi.keystore is located in the TOMCAT_HOME directory with the password TAMRUS, then your default connector
<Connector port="8443" protocol="HTTP/1.1" SSLEnabled="true"
maxThreads="150" scheme="https" secure="true"
clientAuth="false" sslProtocol="TLS" />
need to be changed into:
<Connector port="8443" protocol="HTTP/1.1" SSLEnabled="true"
maxThreads="150" scheme="https" secure="true"
clientAuth="false" sslProtocol="TLS"
keystoreFile="uddi.keystore" keystorePass="TAMRUS"/>
For detailed information, refer to Apache Tomcat 6.0 JNDI Resources HOW-TO available at http://tomcat.apache.org/tomcat-6.0-doc/jndi-resources-howto.html
For JBoss
To enable SSL on JBoss, uncomment the SSL/TLS connector in JBOSS_HOME/server/default/deploy/jbossweb.sar/server.xml and change the values of the keystorFile and keystorPass properties to your actual values.
For IBM WebSphere
IBM WebSphere supports SSL by default.

Copyright © TIBCO Software Inc. All Rights Reserved
Copyright © TIBCO Software Inc. All Rights Reserved