WMB has capabilities that enable it to communicate with WSRR and retrieve service endpoints, policies etc. Configuring the secure communication guarantees that the communication is secure. The steps mentioned below follow the info center doc at this location - http://publib.boulder.ibm.com/infocenter/wmbhelp/v8r0m0/index.jsp?topic=%2Fcom.ibm.etools.mft.doc%2Fac56060_.htm
As a prerequisite, from the WSRR machine obtain a copy of the WSRR ClientKeyFile.jks and ClientTrustFile.jks from the WSRR server machine. This would normally be located at - <WSRR WAS home>/profiles/<WSRR Profile>/etc. If you have replaced these files with your own files, use those. The default password for the key and trust store in WSRR is WebAS.
The following are the steps that needs to run from the WMB machine.
a) Ensure that the broker is running. If not start the broker using the following command.
(b) Add WSRR details to the broker (the command keeps the rest of the configurable values at their default settings)
mqsichangeproperties <brokerName> -c ServiceRegistries -o DefaultWSRR -n endpointAddress,locationJNDIBinding -v https://<wsrr_hostname>:<secure_port>/WSRRCoreSDO/services/WSRRCoreSDOPort,iiop://<WSRR_host_name>:2809/
(c) Configure the broker keystore to contain WSRR server certificate keys
mqsichangeproperties <brokerName> -o BrokerRegistry -n brokerKeystoreFile -v <path_to>/ClientKeyFile.jks
(d) Configure the broker truststore to contain signer certificates for WSRR server
mqsichangeproperties <brokerName> -o BrokerRegistry -n brokerTruststoreFile -v <path_to>/ClientTrustFile.jks
(e) Stop the Broker
(f) Provide the WSRR user name and password to Broker
mqsisetdbparms <brokerName> -n DefaultWSRR::WSRR -u <uid> -p <password>
(g) Set the brokerKeystore user name and password
mqsisetdbparms <brokerName> -n brokerKeystore::password -u <username_for_datasource> -p <password_to_access_datasource>
(h) Set the brokerTrustStore user name and password
mqsisetdbparms <brokerName> -n brokerTruststore::password -u <username_for_datasource> -p <password_to_access_datasource>
(i) Start the Broker