Enabling One-way SSL Authentication in RMS

One-way SSL authentication enables the application operating as the SSL client, which in this case is web browser, to verify the identity of the application operating as the SSL server (RMS). The SSL-client application is not verified by the SSL-server application.

Procedure

  1. Import the BRMS project in the TIBCO BusinessEvents Studio and copy it into your workspace. Now open the RMS.cdd file for editing. See Configuring RMS Server Properties for details.
  2. In the CDD editor Processing Units tab, click default.
    In the Properties panel on the right, you can see the be.channel.deactivate property.
  3. Remove the /WebStudio/Core/Channels/WS_CH_Secure_WebstudioChannel value from the be.channel.deactivate property.
  4. Save the RMS.cdd file.
  5. In the file system, copy the RMS.cdd file from your workspace to the BRMS project and to the RMS server startup location.
     The locations are:
    • BE_HOME/rms/project/BRMS/Deployment/RMS.cdd
    • BE_HOME/rms/bin/RMS.cdd
       
  6. Restart the RMS server.

Result

To verify, type the URL https://localhost/WebStudio/ in a web browser and press Enter. No port is required as default SSL port is used. The web browser notifies you about the untrusted certificate from the SSL server.