Enabling SSL between components
If SSL is enabled in the existing system for the Content Platform Engine to Content Search Services communications, use your own SSL keystore and certificate files in place of the default files that are provided with the Content Platform Engine container deployment.
About this task
Add the files keystore.jks and trustore.jks from your existing system to the configuration overrides directory that you created on the Content Platform Engine configuration volume, for example: /cpecfgstore/cpe/configDropins/overrides.
In all the following cases, the files holding the certificates are added to the volume that you created for the Content Search Services configuration volume, for example, /contentServices/CSS/css-data.
If the existing system enabled SSL for the Content Platform Engine to Content Search Services communications, you must use your own SSL keystore and certificate files in place of the default file that is provided with the Content Search Services container deployment. Add the fileskeystore.jks and truststore.jks from your existing system to the CSS configuration volume.
If the existing system did not previously enable SSL for the Content Platform Engine to Content Search Services communication, the sample cssSelfsignedServerStore file provided by default with the Content Search Services container can be downloaded and used. Add the downloaded cssSelfsignedServerStore file to the Content Search Services configuration volume.
Alternatively, you can generate and store your own certificates in the Content Search Services configuration volume as described in the topic Configuring SSL for IBM Content Search Services.