InfoCenter Home >
5: Securing applications -- special topics >
5.5: Certificate-based authentication >
5.5.4: Requesting certificates >
5.5.4.3: Using test certificates
If you need to start using a server before you get a production
certificate from a CA -- for example, to test your installation --
you can do either of the following, less secure, alternatives:
- You can use the test certificate (in the
DummyServerKeyFile, see 5.7.3: ORB SSL
Configuration) provided with
WebSphere to perform some early tests. However, you should replace
it with a certificate that legitimately represents your server as
soon as possible. For this, you do can either of the following:
- Acquire production (or test) certificates from the CA
- Create your own test CA and issue test certificates
- You can configure the server initially without its certificate
keyring. This means that clients cannot access the server securely.
Again, this situation is acceptable only for testing purposes.
When you receive the certificate from the CA, you can modify the
configuration of the server to use the new certificate. Clients can
then access the server with the security provided by the certificate.
|
|