Configuring a Sterling B2B Integrator server for a secure connection

The Sterling B2B Integrator SOA SSL Http server adapter is predefined and ready to use with little configuration to set up a secure connection with IBM® Sterling Control Center Monitor.

  • For Sterling B2B Integrator, use the HTTP Server adapter preconfigured for SSL (Sterling B2B Integrator SOA SSL Server adapter).
  • Obtain the certificate authority (CA) or public self-signed certificate for the IBM Sterling B2B Integrator SOA SSL Server Adapter.
  • Create and configure the keystore and truststore files in IBM Sterling Control Center Monitor.
  • If client authentication is required by the monitored server, the following steps are required:
    1. Obtain the keystore in JKS format for the engine.
    2. Export the certificate.
    3. Put the certificate in the trusted certificates files on the monitored server.
  • Import the certificate authority (CA) or public self-signed certificate of the Sterling B2B Integrator server into the truststore on the IBM Sterling Control Center Monitor engine.

In a high availability environment, every event processor's keystore certificate must be trusted by your other event processors in the cluster. In every event processor's truststore, you must include the certificate. You can use the same keystore and truststore files for every event processor in your high availability environment. You might receive a browser security warning when you access the web console on an event processor where the common name does not match the host name that you are connecting to.

To configure a Sterling B2B Integrator server for a secure connection with IBM Sterling Control Center Monitor:

  1. From the Sterling B2B Integrator Admin Console, select Deployment > Services > Configuration.
  2. On the Services Configuration page, select HTTP Server Adapter from the Search by Service Type.
  3. From the list of search results, enable the SOA SSL Http Server Adapter and click Next.
  4. Select the System Certificate you want to use. (This certificate must be the same root certificate that is in the truststore on the IBM Sterling Control Center Monitor engine.)
  5. Select a Cipher Strength.
  6. For client authentication, select the CA Certificate that contains the client authentication information.
  7. Save the changes.
  8. To configure the SCCInteropService, select Deployment > Web Services > Manager.
  9. On the SCCInteropService: SOAP Transport Binding Settings page, click Use HTTPS as SOAP transport.
  10. Click Save.
To add the Sterling B2B Integrator server in IBM Sterling Control Center Monitor, set the Web Service Port to the secure port defined in Sterling B2B Integrator. Set the web protocol to HTTPS.