To configure the management agent to enable secure connection from Policy Manager, do these tasks:When this parameter is enabled, the management agent accepts only HTTPS connections from Policy Manager.Arrange the WebSphere application server’s identity (certificate with private key) in the application server’s keystore file. For instructions, see WebSphere Application Server documentation.
1. Arrange the WebSphere application server’s public certificate in Policy Manager’s truststore.
2. In a text editor, open the file startPolicyMgr.tra.
− If so, modify the truststore, adding the public certificate of the WebSphere application server.
a. Create a truststore containing the public certificate of the WebSphere application server. The truststore file must be accessible from the Policy Manager host.
b. Modify the file startPolicyMgr.tra by adding the three properties above, to specify the new truststore.If the WebSphere application server requires client authentication from SSL clients, then you must also ensure proper configuration of Policy Manager’s identity (certificate with private key) in Policy Manager’s keystore.
1. In a text editor, open the file startPolicyMgr.tra.
2. Determine whether that file already specifies an identity keystore, using properties like these:
− If the file startPolicyMgr.tra does specify an identity keystore, verify that the keystore meets the requirements listed in the table (below), and then stop (do not complete the remaining steps).
−
3. Create an identity keystore containing the Policy Manager’s (central services) identity (certificate with private key). Ensure that the keystore meets the requirements in Table 7 (below).
4. Modify the file startPolicyMgr.tra by adding the three properties above, to specify the new keystore.
If the WebSphere application server requires client authentication from SSL clients, then you must also arrange Policy Manager’s public certificate in the WebSphere application server’s truststore. For instructions see WebSphere Application Server documentation.
Copyright © TIBCO Software Inc. All Rights Reserved.