Use this topic to change the default Secure Sockets Layer repertoire key files.
The default Secure Sockets
Layer (SSL) repertoire is used to securely communicate between internal Java
processes when you enable global security. If you change the key files that
are used by the deployment manager default SSL repertoire, you must change
the default SSL key files of the federated nodes to the same key files that
are used by the deployment manager default SSL repertoire. After changing
the default SSL key files that are used by the deployment manager, but before
federating a new node with global security enabled, you must change the default
SSL key files of the unfederated node to match the key files that are used
by the deployment manager. Without this change, the deployment manager fails
to connect to the unfederated node when the deployment manager attempts to
federate it. Complete the following instructions to configure the deployment
manager and the nodes to use the new key file:
If
you modify the default digital certificates in the key rings that belongs
to the node agent and the deployment managers or application servers, you
must verify that the public certificate of the new certificate authority is
added as a trust certificate in the key rings of all servers to which it needs
to communicate. This action includes modifying the certificates so that they
are issued from a different certificate authority (for example, if you use
a commercial certificate authority).
In this information ...Related concepts
| IBM Redbooks, demos, education, and more(Index) |