Store Trusted Certificates Outside of the Project
- Procedure
- Create a directory where you want to store the trusted certificates. You must copy this directory to each machine where engines are deployed. Alternatively, the location can be a shared network area accessible by all process engines.
- Create a global variable named
BE_GLOBAL_TRUSTED_CA_STORE
. See Global Variable Reference for more information. - Set the value of
BE_GLOBAL_TRUSTED_CA_STORE
to the location of the trusted certificates folder on your file system. The value must be a file URL, for example,file:///c:/tibco/certs
.The location can be the same for all deployed engines (that is, you copied it to the same location on each machine or it is a shared network drive). Alternatively you can change the value of the global variable as needed when you deploy the project
- Specify a value in the Trusted Certificates field in the SSL Configuration dialog. When the project runs, the value of BE_GLOBAL_CA_STORE is used, and not the value you specify in the Trusted Certificates field.
- Save the resource.