Configuring Esri security certificates for trusted connections

Add the Esri certificates to the truststore for your installation. Complete only the steps that apply to your environment.

Before you begin

Note: If you are using a Maximo® Real Estate and Facilities server on Red Hat OpenShift Container Platform, complete the steps in Additional CA certificates instead.

Configure IBM® WebSphere® Application Server Liberty to add the Esri certificates to the truststore.

If you need to add the root and intermediate certs of the Esri server to the Maximo Real Estate and Facilities server, you can use this OpenSSL command to get the certificates.
echo q | openssl s_client -showcerts -connect your-mapping-server.com:443 > your-mapping-server.com.cer

Use the following steps to add the certificates to the truststore and restart the Maximo Real Estate and Facilities server.

Procedure

  1. Go to c:\tririga\wlp\bin and see which JRE/JDK is being used by running type run.bat and looking for the JAVA_HOME variable.
  2. Go to c:\program files\java<jre/jdk>\jre\lib\security.
  3. Add the certificates obtained from the OpenSSL command to the trusted certificate authorities file (the default password is changeit) with keytool -import -alias esri-certs -file your-mapping-server.com.cer -keystore cacerts.
  4. Check that the certificates were successfully installed in the trusted certificate authorities file with keytool -list -keystore cacerts.
  5. Go to c:\tririga\wlp\bin, stop the server with shutdown.bat, and start the server with run.bat.