|
|
|
If you are using a root or chain Certificate Authority (CA) to secure the back channel and it is not listed in the AM.keystore file, you need to add it to the file using the Java keytool utility. The keytool utility is part of the JRE included with the JDK required by the Web Agent Option Pack.
For example, a signed Verisign CA server-side certificate is used to SSL-enable the producer-side web server installed with the Web Agent Option Pack. To use this certificate for Basic over SSL authentication, add the Verisign certificate to the AM.keystore. This ensures that the consumer is communicating with a producer that can present a server-side certificate that has been verified by a trusted CA.
Note: You do not need to add the root certificate to the Web Agent key store.
For complete instructions for using the Java keytool utility, go to Sun Microsystems.
| Copyright © 2011 CA. All rights reserved. | Email CA Technologies about this topic |