Administrators can configure IBM® Rational® Change to have Secure
Sockets Layer (SSL) and HTTPS support with a 128-bit encryption key.
This section contains the information necessary to configure your
system and web servers for SSL and HTTPS. The detailed steps contain
information for the bundled web server, Jetty. For other web servers,
see the documentation for that web server. Follow these steps, in
the order listed.
Generating keystore files
To configure the software to use SSL/HTTPS for secure communication,
first create a keystore file. This key file contains both public keys
stored as signed certificates and private keys stored in personal
certificates.
Modifying the web server
After you have generated the keystore file, you must modify
the Jetty web server.
Using HTTPS between servers in Central Server mode
After you have modified your web server, configure your
system to use HTTPS between servers in Central Server mode. Central-to-remote
communication is done through HTTP or HTTPS. If one server is running
HTTPS, you must configure the Java™ installation
that services the other server so that the installation can trust
the certificate.
Obfuscating passwords
You can obfuscate passwords to convert them to an unreadable
format. To obfuscate Password and KeyPassword,
complete the steps in this topic.