Configuring SSL for IBM Content Search Services
The IBM Content Search Services server can communicate with the Content Platform Engine server on both secure and nonsecure channels. You can configure the IBM Content Search Services server to communicate over a secure connection by using the Secure Sockets Layer (SSL) protocol.
SSL is a commonly used protocol that provides secure connections by letting applications that connect over a network authenticate their identity to each other. SSL also encrypts the data that is exchanged between the applications.
With Content Platform Engine, you can configure secure channels on
different levels. Based on your specific requirements, you can configure SSL on the following
levels:
- Encrypt the data that is transmitted over the network
- Perform SSL server authentication
Restriction: Each of these levels is dependent on the previous levels. For example,
to perform level 3, you must first configure level 1 and level 2.
Note: The person responsible for configuring SSL must have good SSL configuration
experience. For example, they need to know how to use the Java keytool.exe, and
know how to generate certificates signed by Certificate Authorities.
Important: On WebSphere Application Server V9.0.5.6 or later or with IBM JRE 8.0.6.25 or
higher, additional configuration is needed for FIPS and SSL communication to work. Use the
instructions in this WebSphere Application Server troubleshooting technical notice to add
these settings to your application server.