Setting up HTTPS Server using Customer-Provided Certificate

To set up HTTPS Server to use a self-signed certificate, follow the steps below:

Procedure

  1. On the Mashery Cluster Manager tab, click Instance Management.
  2. Scroll down to HTTP Server Security Level section and select Enable HTTPS only.

  3. In the HTTP Server Security Settings section, specify the HTTPS Port number (default is 443).
    Note: Administrators can change the port number to another number, such as 8443. For Linux installations, it is not advised to choose a port number below 1000. In addition, the following reserved port numbers are used by TIBCO Mashery Local: 3306, 8081, 8082, 8083, 5489, 11211, 11212, 11213, 11214, 11215, and 11216.
  4. Use your CA certificate. Click Upload new certificate.
    The Upload SSL Certificate window is displayed.

  5. In the Upload SSL Certificate window, click the Click here to select file link, browse to the CA certificate file, then click Upload.
    Note: The Certificate File should be in PKCS#12 format.
  6. Click Save to save all changes. It will take a few minutes for Mashery Local service to restart.