Enabling Deployment Over Secured (https) Communications for a Deployment Server

If you create a deployment server for a BPM runtime that is configured to use secured (https) communications, you must obtain the self-signed certificate provided by the instance hosting the BPM runtime, then register that certificate with the TIBCO Business Studio JRE.

Until you do this, you cannot deploy applications to this BPM runtime. This is because the TIBCO Business Studio JRE needs the certificate to be able to establish a secured connection to the deployment server.

Procedure

  1. Contact your BPM runtime administrator to obtain the required certificate.
  2. Copy the certificate from the BPM runtime node to a file (for example, c:\instance1_cert.txt) on the computer where you are running TIBCO Business Studio.
  3. Make sure that you have the JAVA_HOME\bin directory in your command path.
  4. Run the following Java keytool command to register the instance’s certificate with the TIBCO Business Studio JRE: 
       keytool -import -trustcacerts -alias alias 
   -keystore \tibcojre\1.6.0\lib\security\cacerts -storepass passwd
   -noprompt -file cert_file

    where:

    • alias is a unique name (case-insensitive) to identify this BPM runtime.
    • TIBCO_HOME is the folder where you installed TIBCO Business Studio.
    • passwd is the password associated with this keystore. (The default value is "changeit".)
    • cert_file is the fully-qualified name of the certificate file you created in step 1 above.

      The following response should be displayed: 

      Certificate was added to keystore
  5. Restart TIBCO Business Studio (if it was running).

Result

You can now use the deployment server to deploy applications to this BPM runtime.