Store Trusted Certificates Outside of the Project

Procedure

  1. Create a directory where you want to store the trusted certificates. You must copy this directory to each machine where engines are deployed. Alternatively, the location can be a shared network area accessible by all process engines.
  2. Create a global variable named BE_GLOBAL_TRUSTED_CA_STORE. See Global Variable Reference for more information.
  3. Set the value of BE_GLOBAL_TRUSTED_CA_STORE to the location of the trusted certificates folder on your file system. The value must be a file URL, for example, file:///c:/tibco/certs.

    The location can be the same for all deployed engines (that is, you copied it to the same location on each machine or it is a shared network drive). Alternatively you can change the value of the global variable as needed when you deploy the project

  4. Specify a value in the Trusted Certificates field in the SSL Configuration dialog. When the project runs, the value of BE_GLOBAL_CA_STORE is used, and not the value you specify in the Trusted Certificates field.
  5. Save the resource.