CA AuthMinder Administration Guide › Configuring SSL › Enable SSL Between Java SDKs and AuthMinder Server › One-Way SSL

One-Way SSL

To enable SSL communication mode between Java SDKs and AuthMinder Server:

1. Access the Administration Console in a Web browser.
2. Ensure that you are logged in as the MA.
3. Activate the Services and Server Configurations tab in the main menu.
4. Ensure that the WebFort tab in the submenu is active.
5. Under the Instance Configurations section, click the Protocol Management link to display the Protocol Configuration page.
6. Select the Server Instance for which you want to configure the protocols.
7. In the List of Protocols section, click the Transaction Native protocol link

   The page to configure the protocol appears.

8. Configure the following fields:
   • Ensure that the Protocol Status is Enabled.
   • In the Transport field, select SSL (1-Way).
   • Select Key in HSM if you want to store the SSL key in HSM.
   • (Only if you selected Key in HSM in the preceding step) Click the Browse button adjacent to the Certificate Chain (in PEM Format) field to select the AuthMinder root certificate.
   • Click the Browse button adjacent to the P12 File Containing Key Pair field to select the AuthMinder root certificate.
   • Enter the password for the PKCS#12 store in the P12 File Password field.
9. Click the Save button.
10. Restart the AuthMinder Server instance. See "Restarting a Server Instance" for instructions on how to restart the AuthMinder Server.
11. Navigate to the following location:
    • On Windows:

      <install_location>\Arcot Systems\sdk\client\java\properties
      

    • On UNIX-Based Platforms:

      <install_location>/arcot/sdk/client/java/properties
      

12. Open the webfort.authentication.properties file in an editor window.
    1. Set the following parameters:
       • authentication.transport = 1SSL (By default, this parameter is set to TCP.)
       • authentication.serverCACertPEMPath = <absolute_path_of_Root_Certificate_in_PEM_FORMAT>

       For example, you can specify authentication.serverCACertPEMPath = <install_location>/certs/<ca_cert>.pem.

       Note: See "Configuration Files and Options" the in CA AuthMinder Installation and Deployment Guide for more information on the webfort.authentication.properties file.

    2. Save the changes and close the file.
13. Open the webfort.issuance.properties file in an editor window.
    1. Set the following parameters:
       • issuance.transport = SSL (By default, this parameter is set to TCP.)
       • issaunce.serverCACertPEMPath = <absolute_path_of_Root_Certificate_in_PEM_FORMAT>

       For example, you can specify issuance.serverCACertPEMPath = <install_location>/certs/<ca_cert>.pem.

       Note: See "Configuration Files and Options" in the CA AuthMinder Installation and Deployment Guide for more information on the webfort.issuance.properties file.

    2. Save the changes and close the file.
14. Restart the application server where Java SDKs are deployed.