ssl certificates
DESCRIPTION
TIBCO BW SSLTRANSCRIPT
![Page 1: SSL Certificates](https://reader034.vdocuments.mx/reader034/viewer/2022051401/563e0a555503464e708b4a16/html5/thumbnails/1.jpg)
SSL certificates
TIBCO BusinessWorks
![Page 2: SSL Certificates](https://reader034.vdocuments.mx/reader034/viewer/2022051401/563e0a555503464e708b4a16/html5/thumbnails/2.jpg)
Generating the key
![Page 3: SSL Certificates](https://reader034.vdocuments.mx/reader034/viewer/2022051401/563e0a555503464e708b4a16/html5/thumbnails/3.jpg)
You will have to create a certificate as you own
the server.
The ‘Keytool’ is a utility provided in the Java 2 SDK which is used to create a certificate.
It should be run as a command line utility.
Available in the bin folder of J2SDK.
Keytool
![Page 4: SSL Certificates](https://reader034.vdocuments.mx/reader034/viewer/2022051401/563e0a555503464e708b4a16/html5/thumbnails/4.jpg)
Keytool -genkey
The my-keystore.jks file will be created at the current location
![Page 5: SSL Certificates](https://reader034.vdocuments.mx/reader034/viewer/2022051401/563e0a555503464e708b4a16/html5/thumbnails/5.jpg)
Keytool
-alias is used to give a name to your key. It should be unique for its purpose. Here it is MY_HOME_SERVER.
-keyalg is encryption algorithm type. Here it is RSA. -keypass is the password affiliated to key. Here it is Ninja@123 -storepass is the password affiliated to the repository. Here it is
Ninja@123 my-keystore.jks is name of the file which acts as repository
keys.
![Page 6: SSL Certificates](https://reader034.vdocuments.mx/reader034/viewer/2022051401/563e0a555503464e708b4a16/html5/thumbnails/6.jpg)
Keytool
When we fill all the CN, OU, O, L, ST & C details, the key called MY_HOME_SERVER will be stored in the repository my-keystore.jks
This entry in the my-keystore.jks would have the public key as well as the private key.
You would now require to publish the public key to the world.
![Page 7: SSL Certificates](https://reader034.vdocuments.mx/reader034/viewer/2022051401/563e0a555503464e708b4a16/html5/thumbnails/7.jpg)
Keytool
To publish the public key to the external world, we need to extract it from the entry we created in the my-keystore.jks repository
We can use the export option in the keytool command to achieve the desired result.
![Page 8: SSL Certificates](https://reader034.vdocuments.mx/reader034/viewer/2022051401/563e0a555503464e708b4a16/html5/thumbnails/8.jpg)
Keytool -export
The public key also known as the certificate will be stored in the file named my-server.cer
You can give this certificate to anyone who wants to connect to your server
![Page 9: SSL Certificates](https://reader034.vdocuments.mx/reader034/viewer/2022051401/563e0a555503464e708b4a16/html5/thumbnails/9.jpg)
Installing Key
Server Side
![Page 10: SSL Certificates](https://reader034.vdocuments.mx/reader034/viewer/2022051401/563e0a555503464e708b4a16/html5/thumbnails/10.jpg)
Server Identity
Create identity from the ‘GENERAL’ pallete
Make sure the URL consists of 3 forward slashes, otherwise it will
not work as desired
Identity file Keystore Location
JKS
![Page 11: SSL Certificates](https://reader034.vdocuments.mx/reader034/viewer/2022051401/563e0a555503464e708b4a16/html5/thumbnails/11.jpg)
HTTPS
![Page 12: SSL Certificates](https://reader034.vdocuments.mx/reader034/viewer/2022051401/563e0a555503464e708b4a16/html5/thumbnails/12.jpg)
Import & Install Certificate
Client Side
![Page 13: SSL Certificates](https://reader034.vdocuments.mx/reader034/viewer/2022051401/563e0a555503464e708b4a16/html5/thumbnails/13.jpg)
Keytool -import
Get the my-server.cer from the server authority which is publicly available and paste it into the desired folder
![Page 14: SSL Certificates](https://reader034.vdocuments.mx/reader034/viewer/2022051401/563e0a555503464e708b4a16/html5/thumbnails/14.jpg)
Client Identity
![Page 15: SSL Certificates](https://reader034.vdocuments.mx/reader034/viewer/2022051401/563e0a555503464e708b4a16/html5/thumbnails/15.jpg)
Import Certificate in BW
![Page 16: SSL Certificates](https://reader034.vdocuments.mx/reader034/viewer/2022051401/563e0a555503464e708b4a16/html5/thumbnails/16.jpg)
Imported Certificate
![Page 17: SSL Certificates](https://reader034.vdocuments.mx/reader034/viewer/2022051401/563e0a555503464e708b4a16/html5/thumbnails/17.jpg)
Configuring HTTP request
![Page 18: SSL Certificates](https://reader034.vdocuments.mx/reader034/viewer/2022051401/563e0a555503464e708b4a16/html5/thumbnails/18.jpg)
Q & A