Configure WebSphere® Application
Server to support Secure Socket Layer (SSL) client authentication
and add the signer certificate for your organization to the truststore.
About this task
Signer certificates establish the trust relationship in
SSL communication. The signer certificate determines whether a user
certificate is accepted. After a signer certificate is accepted, the
LDAP server looks up the user in the registry. If the user is found,
the Rational® ClearQuest® Web logon window opens.
Procedure
- Configure WebSphere Application
Server to support SSL client certificates.
- In the WebSphere Application
Server administrative console, click .
- Under Related Items, click SSL
configurations.
- In the SSL configurations table, click either a node
name or NodeDefaultSSLSettings if you are using
default settings.
- Under Additional Properties,
click Quality of protection (QoP) settings.
- Select Supported from the Client
certificate authentication list.
Attention: Do not select Required, else
you will be unable to logon to the WebSphere Application
Server administrative console.
- Click Apply and then click Save.
- Add the signer certificate to the WebSphere Application Server truststore.
- Click .
- Under Related Items, click Keystores
and certificates.
- In the keystore types table, click either a trust store
or NodeDefaultTrustStore if you are using the
default settings.
- Under Additional Properties,
click Signer certificates.
- Click Add.