Configuring SSL for TIBCO Order Management

This section describes how to configure SSL for Order Management System; the web-based application components of TIBCO Order Management.

Configure SSL by using the following steps:

  1. Edit the application.properties files in the following locations:
    • <OM_HOME>/roles/aopd/standalone/config/application.properties
    • <OM_HOME>/roles/archival-service/standalone/config/application.properties
    • <OM_HOME>/roles/authorization-service/standalone/config/application.properties
    • <OM_HOME>/roles/catalog-services/standalone/config/application.properties
    • <OM_HOME>/roles/configurator/standalone/config/application.properties
    • <OM_HOME>/roles/configurator-ui/standalone/config/application.properties
    • <OM_HOME>/roles/dataservice/standalone/config/application.properties
    • <OM_HOME>/roles/om-migration/standalone/config/application.properties
    • <OM_HOME>/roles/omsui/standalone/config/application.properties
    • <OM_HOME>/roles/orchestrator/standalone/config/application.properties
    • <OM_HOME>/roles/tmf-om-adapter/standalone/config/application.properties
    • <OM_HOME>/samples/processcomponent/standalone/config/application.properties

    Add the following parameters to each application.properties file:

    • server.ssl.key-alias=<key-alias>
    • server.ssl.key-password=<key-password>
    • server.ssl.key-store=classpath:<ssl-key-store-fileName>
    • trust-store=classpath:<ssl-key-store-fileName>
    • trust-store-password=<key-password>

    Change the configuratorServiceUrl value to HTTPS url

  2. Keep the keystore files in each directory or in as classpath resource.
    • <OM_HOME>/roles/aopd/standalone/config
    • <OM_HOME>/roles/archival-service/standalone/config
    • <OM_HOME>/roles/authorization-service/standalone/config
    • <OM_HOME>/roles/catalog-services/standalone/config
    • <OM_HOME>/roles/configurator/standalone/config
    • <OM_HOME>/roles/configurator-ui/standalone/config
    • <OM_HOME>/roles/dataservice/standalone/config
    • <OM_HOME>/roles/om-migration/standalone/config
    • <OM_HOME>/roles/omsui/standalone/config
    • <OM_HOME>/roles/orchestrator/standalone/config
    • <OM_HOME>/roles/tmf-om-adapter/standalone/config
    • <OM_HOME>/samples/processcomponent/standalone/config
  3. Edit and save the files and then start the configurator UI.
    1. In a browser, open the following URL: https://host:config-ui_port
    2. Log in to the configurator UI.
    3. On the Order Management System UI tab, under the OMS UI Engine Configuration app properties, update the com.tibco.af.omsui.httpChannelType property value as 'HTTPS'.
  4. Search for all services URLs and configure them for the HTTPS protocol.
  5. Edit <OM_HOME>/samples/processcomponent/standalone/config/application.properties
    • Set authorizationServiceTokenEndPoint to HTTPS URL
    • Set orchestratorBaseUrl to HTTPS URL
  6. Start (or restart) all the required services.