Previous Topic: Install Connector Xpress

Next Topic: Install Connector Xpress Silently

Share Trusted Certificate Store of Java Connector Server

In Connector Xpress, you can define a JNDI Data source as TLS/SSL enabled.

If a JNDI Data Source is TLS/SSL enabled, import the JNDI Data Source certificate into the Java Connector Server trusted certificate store. Modify the Connector Xpress startup script to reference the Java Connector Server trusted certificate store.

Follow these steps:

  1. Navigate to the following location of the Java Connector Server trusted certificate store:

    jcs_home\conf\server_jcs.xml

  2. In the connectorClientCertStore property setting, find the path of the certificate store
    <property name="connectorClientCertStore"><value>../conf/ssl.keystore</value></property> 
    
  3. Enter the following command:

    keytool –import –trustcacerts –keystore "c:\Program Files\CA\IM\Connector Server\conf\ssl.keystore" -storepass <Keystore Password> –file <trusted certificate>.pem

    The JNDI Data Source certificate is imported into the ssl.keystore.

  4. In the Connector Xpress startup script or shortcut, add javax.net.ssl.trustStore and javax.net.ssl.trustStorePassword parameters to the java command lines. For example:
    java -Xms128M -Xmx512m "-Djavax.net.ssl.trustStore=C:\Program Files\CA\IM\Connector Server\conf\ssl.keystore" -Djavax.net.ssl.trustStorePassword=<Keystore  Password> -Dswing.aatext=true -Dcom.ca.commons.logging.nolog4j=true -Djava.util.logging.config.file=..\conf\logging.properties -jar ..\lib\conxp.jar %*   java -Xms128M -Xmx512m "-Djavax.net.ssl.trustStore=C:\CA\IM\Connector Server\conf\ssl.keystore" -Djavax.net.ssl.trustStorePassword=<MyPassword> -Dswing.aatext=true -Dcom.ca.commons.logging.nolog4j=true -Djava.util.logging.config.file=..\conf\logging.properties -jar ..\lib\conxp.jar %* 
    
  5. Restart Java Connector Service and Connector Xpress.
  6. Test the TLS/SSL connection in Connector Xpress.