Securing connections to the web user interface
You can secure connections to the web user interface of an integration node so that the web user interface is accessible only over HTTPS.
Before you begin
About this task
When an integration node is created, connections with the web user interface are not secured and the web user interface is accessible over HTTP.
- Enable SSL on the integration node by running the following
where int_node is the name of your integration node.
mqsichangeproperties int_node -b webadmin -o server -n enableSSL -v true
- Configure the SSL port for the web user interface by running
the following command:
where port_number is the port that you want to use for SSL.
mqsichangeproperties int_node -b webadmin -o HTTPSConnector -n port -v port_number
- Configure the web user interface with the path to the keystore:
where keystore_path is the path to the keystore file.
mqsichangeproperties int_node -b webadmin -o HTTPSConnector -n keystoreFile -v keystore_path
The server certificate that is placed in the keystore must contain the hostname in either the Common Name (CN) field, or as a Subject Alternative Name.
- Configure the web user interface with the password
for the keystore by issuing the following commands:
mqsichangeproperties int_node -b webadmin -o HTTPSConnector -n keystorePass -v webadminkeystore::password
webadminkeystore::passwordis a fixed literal resource name to be used in the mqsisetdbparms command that specifies the actual password.
mqsisetdbparms int_node -n webadminkeystore::password -u ignore -p password
- Stop and restart your integration node:
mqsistop int_node mqsistart int_node