Friday, October 13, 2017

Enabling SSL At HTTP Web Server level

Steps :
1.      Open the Key Management tool from window start menu
2.      Click New
3.      From the List of Key Database Type select the CMS.
4.      Enter the File Name.
5.      Create a New Folder in HTTP Server folder and store the .kdb file as shown in the above screen.
Note:  Don’t overwrite Existing key.kdb file.
6.      Click ok and provide the password .select the Stash password to file option.
7.      Select the Personal Certificates option and click Import.
8.      Select the PKCS12 option and brows the certificate and click ok.
9.      Enter the private key password.
10.   Once certificate is imported, it will display the Private key and Public key. Select all and click ok.
11.   Click Ok.

HTTP Server Configuration

1.      Go to Http Server Folder   E:\IBM\HTTPServer\conf   
Open the httpd.conf file uncomment the below lines.
LoadModule ibm_ssl_module modules/mod_ibm_ssl.so
Listen 0.0.0.0:443
## IPv6 support:
#Listen [::]:443
SSLEnable
SSLProtocolDisable SSLv2
Key File E:/IBM/HTTPServer/SSL/key.kdb (Add the kdb file which you created in the above steps in this scenario sawkey.kdb)
#SSLDisable
# End of example SSL configuration

WebSphere


1)      Login into Web sphere console.
2)      Click the serversà Webserver
3)      Click the webserver1
4)      Under ports section click the details
5)      Click the Webserver_address and change the port number from 80 to 443.
6)      Click Apply and save the configuration.
7)      Restart the HTTP Webserver and Restart the Application server.
8)      Click the Serversà Websphere application servers.
9)      Under Server Infrastructure àJava Process Management à Click the Process definition
10)   Click the Java virtual machine
11)  Click the Custom properties
12)   Click new and add the below property.
Property Name: webservices.unify.faults
Value: false

13)   Apply and save the configuration.
14)   Copy the axis2.xml file from:

IBM\SMP\maximo\applications\maximo\businessobjects\classes\psdi\iface\webservices
and paste it in the following directory:

\IBM\SMP\maximo\applications\maximo\meaweb\webmodule\WEB-INF\conf
Note that the conf directory does not exist and must be created before pasting the file there.

Step9: Now edit the axis2.xml in the conf directory, and add the following block of text to enable the https transport in the axis2.xml

15)   Rebuild the maximo.ear using the buildmaximoearwas8.cmd
16)   Redeploy the maximo.ear and test.

Maximo Properties

Ø  mxe.int.webappurl Change the URL http to https
EX: http://servername /meaweb/
TO
https://servername /meaweb/
Ø  mxe.report.birt.viewerurl Change the URL http to https
EX: http://servername. /maximorpt/report
TO

https://servername /maximorpt/report

1 comment:

  1. Before Step 15 under WebSphere, you said: Step9: Now edit the axis2.xml in the conf directory, and add the following block of text to enable the https transport in the axis2.xml

    Where is the suggested "block of text"?

    Are Steps 8 to 15 under WebSphere really related to SSL or are they addressing a different issue?

    Thank you.

    ReplyDelete

JMS Messaging - High availability, scalability and Maximo Integration Framework using a single Service Integration Bus

T he first is configuring the JMS resources for scalability and the second is configuring the messaging engines for highly availability. For...