Updating an HTTPS server

You can update an HTTPS server in AS4 Microservice if you have master account permissions. HTTPS servers transfer messages between destinations with cryptographic protocols to provide security in transit.

Before you begin

Important: Selecting an SSL protocol for message exchanges, including such configurations as SSL_TLS, SSL_TLSv2, SSL, SSLv2, SSLv3, is not suggested. A security risk exists for all SSL protocols. If the existing HTTPS server uses an SSL protocol or protocol configuration, update the configuration to use a TLS connection protocol. Available TLS connection protocols include TLS, TLSv1, TLSv1.1, and TLSv1.2.

About this task

To update an HTTPS server:

Procedure

  1. Log in to AS4 Microservice.
  2. Click Systems Management and select HTTP/S Servers.
  3. On the HTTP/S Servers page, click the server name (in the Name column) that you want to update.
    In addition to the basic properties that you configured when you created the server, TCP, HTTP, and HTTPS properties are displayed.
  4. Click Edit next to the section you want to update, make necessary changes and click Save. Click Cancel to cancel the updates.
    The following table provides information about HTTPS properties:
    Field Description

    SSL certificate

    The certificate that is used by the HTTPS server to encrypt and send data securely.

    For SSL certificates, you must add SHA-2 certificates while creating an HTTPS Server. As a result, TLS1.2 will be the default protocol.

    Remember: You must share the public key of the certificate with your trading partner, so your trading partner can add the certificate to their system. The sender in the exchange uses the public key to encrypt the message during message exchange.

    SSL Protocol

    Select the connection protocol or configuration to securely transfer messages.

    Remember: Selecting an SSL protocol for message exchanges, including such configurations as SSL_TLS, SSL_TLSv2, SSL, SSLv2, SSLv3, is not suggested. If the existing HTTPS server uses an SSL protocol or protocol configuration, update the configuration to use a TLS connection protocol. Available TLS connection protocols include TLS, TLSv1, TLSv1.1, and TLSv1.2.

    Security level

    The level of security attributed to the connection protocol. Available values include CUSTOM, HIGH, MEDIUM, and WEAK.

    SSL client authentication

    SSL client authentication determines the identity of the client (sender) when a transaction is initiated. Select Enable SSL client authentication to enable to disable client authentication.

    Selected CA Certificates

    The selected global truststore, CA certificate, or other certificates for SSL client authentication.