You can use SSL in an HTTP adapter with simple and mutual
authentication to connect to back-end services.
About this task
Configure the MobileFirst Server to
use SSL in an HTTP adapter by performing the steps described here.
Note: SSL
represents transport level security, which is independent of basic
authentication. It is possible to do basic authentication either over
HTTP or HTTPS.
Procedure
- Set the URL protocol of the HTTP adapter to https.
- Store SSL certificates in the MobileFirst Server keystore. See Configuring the MobileFirst Server keystore.
SSL with mutual authentication
If you use SSL
with mutual authentication, you must also perform the following steps:
- Generate your own private key for the HTTP adapter or use
one provided by a trusted authority.
- If you generated your own private key, export the public
certificate of the generated private key and import it into the back-end
truststore.
- Define an alias and password for the private key in the connectionPolicy element
of the adapter-descriptor XML file, adapter.xml.
The sslCertificateAlias and sslCertificatePassword subelements
are described in HTTP adapter connectionPolicy element.