Configuring SSL for TIBCO Order Management
This section describes how to configure SSL for Order Management System; the web-based application components of TIBCO Order Management.
Configure SSL by using the following steps:
- Edit the application.properties files in the following locations:
- <OM_HOME>/roles/aopd/standalone/config/application.properties
- <OM_HOME>/roles/archival-service/standalone/config/application.properties
- <OM_HOME>/roles/authorization-service/standalone/config/application.properties
- <OM_HOME>/roles/catalog-services/standalone/config/application.properties
- <OM_HOME>/roles/configurator/standalone/config/application.properties
- <OM_HOME>/roles/configurator-ui/standalone/config/application.properties
- <OM_HOME>/roles/dataservice/standalone/config/application.properties
- <OM_HOME>/roles/om-migration/standalone/config/application.properties
- <OM_HOME>/roles/omsui/standalone/config/application.properties
- <OM_HOME>/roles/orchestrator/standalone/config/application.properties
- <OM_HOME>/roles/tmf-om-adapter/standalone/config/application.properties
- <OM_HOME>/samples/processcomponent/standalone/config/application.properties
Add the following parameters to each application.properties file:
- server.ssl.key-alias=<key-alias>
- server.ssl.key-password=<key-password>
- server.ssl.key-store=classpath:<ssl-key-store-fileName>
- trust-store=classpath:<ssl-key-store-fileName>
- trust-store-password=<key-password>
Change the configuratorServiceUrl value to HTTPS url
- Keep the keystore files in each directory or in as classpath resource.
- <OM_HOME>/roles/aopd/standalone/config
- <OM_HOME>/roles/archival-service/standalone/config
- <OM_HOME>/roles/authorization-service/standalone/config
- <OM_HOME>/roles/catalog-services/standalone/config
- <OM_HOME>/roles/configurator/standalone/config
- <OM_HOME>/roles/configurator-ui/standalone/config
- <OM_HOME>/roles/dataservice/standalone/config
- <OM_HOME>/roles/om-migration/standalone/config
- <OM_HOME>/roles/omsui/standalone/config
- <OM_HOME>/roles/orchestrator/standalone/config
- <OM_HOME>/roles/tmf-om-adapter/standalone/config
- <OM_HOME>/samples/processcomponent/standalone/config
- Edit and save the files and then start the configurator UI.
- In a browser, open the following URL: https://host:config-ui_port
- Log in to the configurator UI.
- On the Order Management System UI tab,
under the OMS UI Engine Configuration app properties, update the
com.tibco.af.omsui.httpChannelType
property value as 'HTTPS'.
- Search for all services URLs and configure them for the HTTPS protocol.
- Edit
<OM_HOME>/samples/processcomponent/standalone/config/application.properties
- Set authorizationServiceTokenEndPoint to HTTPS URL
- Set orchestratorBaseUrl to HTTPS URL
- Start (or restart) all the required services.