Troubleshooting Secure Sockets Layer problems

A Secure Sockets Layer (SSL) is required only to perform resource manager configuration. If you are having problems importing or retrieving documents, you can conclude SSL is not the cause. If you are trying to access the resource manager from the system administration client, and you receive an error, SSL might have problems.

1. In a web browser, go to https://hostname, where hostname is the host name of your web server.
   Accept the self-signed certificate that you created during the SSL configuration. The IBM HTTP server welcome page opens. If you get an error message, check the IBM HTTP server log file named error.log for SSL-related error messages. The default location of the log file is c:\IBM HTTP Server\logs or /opt/IBM HTTP Server/logs.

   Tip: When you work with SSL, never specify local host as the host name. SSL requires that you use a valid system host name.
2. After verifying the SSL connection between the client and HTTP server, you validate the SSL connection between the client and WebSphere Application Server.
   Go to https://hostname:port/icmrm/snoop. If you are using WebSphere as your SSL type, the port number is typically 9444. If this fails, check the WebSphere Application Server log files that are in C:\Program Files\WebSphere\AppServer\logs.
3. You can identify the port number that is being used by WebSphere Application Server from the WebSphere administrative console by clicking your node and then Application Servers > icmrm.
   In the text pane, the configuration information is displayed by clicking Web ContainerHTTP Transport.
4. Verify that the SSL connection is working when it is communicating from the client through the web server to WebSphere Application Server.
   Go to https://hostname/icmrm/snoop. If this action fails, check the IBM HTTP Server logs that are in the c:\IBM HTTP Server\logs directory.