Enabling SSL Communication |
| This topic describes the procedure to enable Secure Sockets Layer (SSL) communication on Process Platform Enterprise Service Bus (ESB). |
|
Secure Sockets Layer (SSL) is an open, non-proprietary protocol for securing data communication across computer networks. SSL is between the application protocol (such as HTTP) and the connection protocol (such as TCP/IP). SSL provides server authentication, message integrity, data encryption, and optional client authentication for TCP/IP connections. SSL over Process Platform Bus provides transport layer security on the Process Platform Enterprise Service Bus. This security supports data integrity and privacy for messages.
SSL over ESB can be configured for a service in the following manner:
- On the Provide Connection Point details page of the Service Group Configuration wizard, select the Enable SSL option.
Note: For a sample of how to create a key store, refer to the Creating a sample key store.
- Specify the Trust store and Key store for the Client.
A trust store is a key store which is used when making decisions about what to trust. A trust store, using which the clients will ascertain the identity of the server, needs to be specified. This is done as follows:
- Click Start > Programs > Process Platform > Instance Name > Tools > Management Console to open Management Console.
- Click Platform Properties tab Management Console to view the list of Platform Properties.
- Add the sslsocket.public.keystore property and in the Value field, type the path of the trust store file that holds all the public keys. This property value is used by both the trust store and the key store. The default type is JKS.
- Add the sslsocket.public.keystore.pwd property and in the Value field, type the password for the trust store. This password value must be in Base64 Encode format.
- Restart the OpenText Process Suite Platform (<instance name>) and IIS.