Setting up SSL on Agent

This procedure describes how to set up SSL on Agent for Application Integrator.

Begin

1. Import the SSL certificate from CA to the keystore:

   $JAVA_HOME/bin/keytool -import -alias <alias_name> -keystore <Agent_instance>/cm/AP/data/security/apcerts -storepass appass -file <path/to/the/ssl_cert.cer>

   appass is the default password and can be changed.

2. (Optional) Confirm the keystore content by typing the following command:

   $JAVA_HOME/bin/keytool -list -v -keystore <Agent_instance>/cm/AP/data/security/apcerts > output_filename

3. When upgrading from a previous Application Integrator version, you need to import the old keystore to the new one:

   $JAVA_HOME\JRE\bin\keytool.exe -importkeystore -srckeystore <previous_keystore> -srcstorepass <previous_keystore_password> -destkeystore apcerts -deststorepass appass

4. Restart the Tomcat server for the action to take effect.