Step 3: Create a Base TIBCO TIBCO MFT Internet Server Installation

For a first-time installation or an upgrade, follow the instructions provided below. For a hotfix installation, see Step 4: Install TIBCO MFT Internet Server Hotfixes.

1. After the JAVA_HOME and the PATH variables are set, copy the generated https keystore to the tibco directory. Optionally the installer can create a self-signed certificate.
   cp -r <MFT-Install>/cloud/k8s_samples/localhost.jks /tibco
2. Install TIBCO MFT Internet Server by following the instructions provided in TIBCO Managed Filer Transfer Internet Server Installationin the following folder /tibco/mftis. If you choose to install TIBCO MFT Internet Server in another directory, your keystore file must be in /tibco directory.
   To install TIBCO MFT Internet Server, you must connect to a database.
3. If you use a self-signed certificate, use the default when prompted for a keystore. Otherwise enter Y to use an existing keystore.
   Enter the location of the keystore as /tibco/localhost.jks and the password for this keystore as changeit.
4. Use the default context (cfis).
5. Use the default ports: Use ports 7080, 7443, 7005, and 7009 for Internet Server.
   If you want to create your own keystore, then you must store it in the /tibco directory. Because client browsers generally connect to Kubernetes first, the MFT certificate is generally not seen by the end user.
6. After the installation is complete, you must customize the Internet Server installations as necessary:
   1. Copy JMS jar files (if JMS is used) to:
      /tibco/mftis/server/webapps/cfis/WEB-INF/lib
   2. Follow the "Security best Practices" documentation to lock down your system.
   3. Update any web.xml parameters as needed.
   4. If you are going to allow HTTP traffic, set parameter UnsecuredHTTPSupport to YES.
      The installation requires connectivity to a test database.