Registering SSL-Enabled EMS Servers
TIBCO Enterprise Message Service supports the Secure Sockets Layer (SSL) protocol. The TEA agent for TIBCO Enterprise Message Service helps you register SSL-enabled EMS servers.
- The EMS server must be configured to use the SSL protocol.
- The EMS server must be running.
- Procedure
- Make sure that the EMS server has been configured to use the SSL protocol. If not, for details about configuring SSL support on an EMS server, see the "SSL Support in TIBCO Enterprise Message Service" topic in the TIBCO Enterprise Message Service User Guide.
- On the Server Management page click Register Server.
- In the Register Server dialog, click the SSL Settings link to open the SSL Parameters dialog.
- Enter the information in the following fields:
Client Identity: Upload the client's digital certificate.
Trusted Certificate: Upload the root certificate of the CA that issued the server certificate.
Expected Server's Hostname: The hostname that appears in the CN field of the server's certificate. If the CN field was not set in the certificate, enter the hostname of the server. This value will be used if you select the Verify Server's Hostname check box.
Private Key Password: Enter the password for the client's private key.
Cipher Suites: Enter a colon-separated list of the names of the cipher suites that the client is allowed to use.
Verify Server's Hostname: Select this field if you want the client to verify the hostname of the server with the value for the CN field in the server's certificate.
Verify Server Certificate: Select this field if you want the client to verify the server's certificate or identity.
- Click Done.
- Click Register Server.