Registering an SSL-Enabled UDDI Server

This task must be completed before registering a UDDI server that is SSL enabled.

Before registering a UDDI server that is SSL enabled, you must prepare a keystore that has the public certificate or root CA certificate of the UDDI server that is imported into the keystore as trusted certificate entries. You can create a trust store by using the keytool provided with a JDK installation and importing your UDDI server's public certificate or its root CA certificate using -importcert option.

Procedure

  1. Edit the file CONFIG_HOME/tibcohost/Admin-instance/data_version/nodes/SystemNode/bin/tibamx_SystemNode.tra to add the following SSL-related properties: 
    java.property.javax.net.ssl.trustStore=/keystore/example/path/my_truststore.jks
java.property.javax.net.ssl.trustStoreType=JKS
java.property.javax.net.ssl.trustStorePassword=secret
    Change the keystore path, type, and password to match your trust store. Both trustStoreType and trustStorePassword are optional while trustStoreType defaults to JKS. When specified trustStorePassword only serves for a checksum validation of the trust store.
  2. Restart the SystemNode for the properties to take effect.
  3. If the ActiveMatrix Administration is replicated, then repeat Step 1 and 2 for the replicated nodes.
    Wait for the Administration UI to display.
  4. Use the Administrator to register a UDDI Server that is SSL enabled.