To keep security credentials secure, configure the client tools to use SSL and HTTPS
protocols to communicate with the Content Platform Engine server.
Before you begin
The following topics describe how to configure the
Content Platform Engine for SSL:
About this task
On the client machine where Process Designer is installed, you import the certificate
from the Content Platform Engine server into the keystore of the JRE that is used to run the Process Designer. Next, configure the client to communicate with the server using the HTTPS
protocol.
Procedure
To configure Process Designer security:
-
From the jre/lib/security directory of the JRE used to run the Process Designer, use a command like the following example to import the certificate:
..\..\bin\keytool -import -keystore
cacerts -file cpe_websphere_ssl_cert.crt
Note that on the Microsoft Windows platform, the keytool command should be run from a privileged
command window. From the context menu of the shortcut used to run the command window, choose
Run as administrator.
The certificate file (.crt) can be exported using a browser from a HTTPS URL on the Content Platform Engine server that the Process Designer connects to. The keytool command prompts
for the password of the specified keystore.
-
During installation, when asked for the URL used in the
WcmApiConfig.properties file, choose an HTTPS URL that can be used to
communicate with the Content Platform Engine server.
The URL in the WcmApiConfig.properties file can also be edited after
installation. The file is located in the following directory:
install_directory\tools\PE\config