The Message Queue uses the server certificate for SSL communication between the Message Queue and its clients. The Message Queue clients are CA ControlMinder endpoints and CA ControlMinder Enterprise Management.
To change the Message Queue server certificate
We recommend that you create a .p12 format certificate.
DistServer/MessageQueue/tibco/bin/ems
tibemsadmin -mangle password
Specifies the password for the server certificate.
The password for the server certificate is encrypted.
DistServer/MessageQueue/tibco/bin/ems
Specifies the full path to the server certificate.
Specifies the full path to the server certificate key.
Note: Leave this parameter blank if you use a .p12 certificate.
Specifies the encrypted password for the server certificate.
The Message Queue server certificate is changed.
Example: The tibemsd.conf file
The following is an example of the Message Queue server parameters in the tibemds.conf file for a .p12 server certificate. The password has been encrypted and is }>8:Jt^+%INK&i^v, and the ssl_server_key parameter has no value:
ssl_server_identity = "C:\Program Files\CA\AccessControlServer\MessageQueue\conf\keystore.p12" ssl_server_key = ssl_password = }>8:Jt^+%INK&i^v
Copyright © 2013 CA Technologies.
All rights reserved.
|
|