Configuring SSL for TIBCO Order Management

This section describes how to configure SSL for Order Management Server; the web-based application components of TIBCO Order Management.

Configure SSL by using the following steps:

  1. Edit the application.properties files in the following locations:
    • <OM_HOME>/roles/aopd/standalone/config/application.properties
    • <OM_HOME>/roles/archival-service/standalone/config/application.properties
    • <OM_HOME>/roles/authorization-service/standalone/config/application.properties
    • <OM_HOME>/roles/catalog-services/standalone/config/application.properties
    • <OM_HOME>/roles/configurator/standalone/config/application.properties
    • <OM_HOME>/roles/dataservice/standalone/config/application.properties
    • <OM_HOME>/roles/ocs/standalone/config/application.properties
    • <OM_HOME>/roles/om-migration/standalone/config/application.properties
    • <OM_HOME>/roles/omsui/standalone/config/application.properties
    • <OM_HOME>/roles/orchestrator/standalone/config/application.properties
    • <OM_HOME>/roles/tmf-om-adapter/standalone/config/application.properties
    • <OM_HOME>/samples/processcomponent/standalone/config/application.properties

    Add the following parameters to each application.properties file:

    • server.ssl.key-alias=<key-alias>
    • server.ssl.key-password=<key-password>
    • server.ssl.key-store=classpath:<ssl-key-store-fileName>
    • trust-store=classpath:<ssl-key-store-fileName>
    • trust-store-password=<key-password>

    Change configuration.service.url value to https url

  2. Keep the keystore files in each directories or in as classpath resource.
    • <OM_HOME>/roles/aopd/standalone/config
    • <OM_HOME>/roles/archival-service/standalone/config
    • <OM_HOME>/roles/authorization-service/standalone/config
    • <OM_HOME>/roles/catalog-services/standalone/config
    • <OM_HOME>/roles/configurator/standalone/config
    • <OM_HOME>/roles/dataservice/standalone/config
    • <OM_HOME>/roles/ocs/standalone/config
    • <OM_HOME>/roles/om-migration/standalone/config
    • <OM_HOME>/roles/omsui/standalone/config
    • <OM_HOME>/roles/orchestrator/standalone/config
    • <OM_HOME>/roles/tmf-om-adapter/standalone/config
    • <OM_HOME>/samples/processcomponent/standalone/config
  3. Edit and save the files and then start the Configurator.
  4. Open the https://host:configuration_port URL in a browser window.
  5. Log in to Configurator.
  6. Search for all services URLs and configure them for https protocol.
  7. Edit <OM_HOME>/samples/processcomponent/standalone/config/application.properties
    • Set auth.service.url to https URL
    • Set orchURL to https URL
  8. Start (or restart) all the required services.