Configuring SSL when using WebSphere
This section describes the general steps required to configure SSL if you have deployed HCL Unica components on WebSphere®. This change is required to allow Deliver components that operate inside Campaign to communicate with HCL Unica hosted services over SSL.
Before you begin
Before you begin, you will need to know the value for the configuration property uiHostName. The value for uiHostName is the URL for HCL Unica hosted services . For details, see Configuring addresses for connecting to HCL Unica hosted services.
About this task
You must access the WebSphere® security console to modify settings for SSL certificate and key management. This task requires a restart of the Campaign web application server to implement the changes.
If you have deployed Campaign on WebSphere®, you must modify the WebSphere® security configuration to retrieve the signer certificate from HCL Unica and add it to the WebSphere® trust store. If you receive an error message indicating that your current signer certificate has expired, delete the current certificate and add a new one.
For specific guidance regarding navigation and working with the WebSphere® user interface, consult the documentation for the specific Unica WebSphere® version you are using.
Procedure
- Generate a trusted keystore.
For additional details, see Generating a trusted keystore.
To configure SSL, you need to specify the values that you define for the following variables. The values shown are for example only. Your values can be different.
- alias: UnicaClientIdentity (example)
- keystore: HCLUnicaTrust.jks (example)
- storepass: trustPwd (example)
- Select the new keystore in the WebSphere® security console.
For example, if you followed the example in Step 1, select HCLUnicaTrust.jks.
- Obtain a security certificate from HCL Unica and import
it into WebSphere®, as
described in the following steps.
- After WebSphere® finishes
creating the signer certificate, select the new certificate in the
security console.
The web application server uses the new certificate when establishing connections to HCL Unica.
- Restart WebSphere®
WebSphere® does not implement the configuration changes until you restart the web application server.
For additional information about supported WebSphere® versions for deploying Unica products, see the Recommended Software Environments and Minimum System Requirements document for each product.