Registering an SSL-Enabled UDDI Server
This task must be completed before registering a UDDI server that is SSL enabled.
Before registering a UDDI server that is SSL enabled, you must prepare a keystore that has the public certificate or root CA certificate of the UDDI server that is imported into the keystore as trusted certificate entries. You can create a trust store by using the keytool provided with a JDK installation and importing your UDDI server's public certificate or its root CA certificate using -importcert option.
- Procedure
- Edit the file
CONFIG_HOME/tibcohost/Admin-instance/data_version/nodes/SystemNode/bin/tibamx_SystemNode.tra
to add the following SSL-related properties:
java.property.javax.net.ssl.trustStore=/keystore/example/path/my_
Change the keystore path, type, and password to match your trust store. Both trustStoreType and trustStorePassword are optional while trustStoreType defaults to JKS. When specified trustStorePassword only serves for a checksum validation of the trust store.
truststore.jks java.property.javax.net.ssl.trustStoreType=JKS java.property.javax.net.ssl.trustStorePassword=secret - Restart the SystemNode for the properties to take effect.
- If the ActiveMatrix Administration is replicated, then repeat Step
1 and 2 for the replicated nodes.
Wait for the Administration UI to display.
- Use the Administrator to register a UDDI Server that is SSL enabled.