The SSL configuration for
WebSphere provides the authentication between the WEB Server (IBM IHS 2.0.47.1)
and the WebSphere JVM. The configuration uses Self Signed Certificates with a
Five Year (1825 days) operational limit. No Keys are purchased to provide this
security as no customer facing interaction is involved, hence certificates are
self signed.
The principle sections of the
setup are:-
ServerKey.jks - Holds the WebSphere Server Certificate
ServerTrust.jks - Holds the Server Key, Client Key and the Plugin Key
allowing WebSphere to trust client connections (SAS,
SOAP)
and the WEB Server via the WEB Plugin.
ClientKey.jks - Holds the Client Certificate for SAS & SOAP /
WebServices Authentication.
ClientTrust.jks - Holds the
Server Key and Client Key allowing the
SAS
& SOAP Web Services to trust the WebSphere
JVM.
PluginKey.kdb - Holds the Plugin
Certificate and the Server Key to
enable
the Web Server to trust the WebSphere JVM.
PluginKey.sth - Holds the
Access password for the PluginKey.kdb
0 comments:
Post a Comment