Using HTTPS with WebSphere Application Server

Edit online

The WebSphere® Application Server Version 9.0.5 has HTTPS set up on port 12101 by default. You can use the provided web addresses for different situations.

To use HTTPS, you must change your login Web address to the following address:

https://<hostname>:12101/IDSWebApp/IDSjsp/Login.jsp

For non-HTTPS connections, use the following Web address:

http://<hostname>:12100/IDSWebApp/IDSjsp/Login.jsp

Additionally, if you want to change the SSL certificate of application server, you can create new key and trust store database files for the WebSphere Application Server to use. By default, the key and trust store database files are separate and are located in the <WAS_HOME>/profiles/TDSWebAdminProfile/etc/ directory. These files are named key.p12 and trust.p12 respectively.

After you have created your new jks files, you can change the key and trust store database files that WebSphere Application Server uses by adding or modifying the following entries (highlighted in bold) in the <WAS_HOME>/profiles/TDSWebAdminProfile/config/cells/DefaultNode/security.xml file to use your new file names, passwords, and file formats.

<keyStores xmi:id="KeyStore_DefaultNode_10" 
 name="key.p12" 
 password="{xor}CDo9Hgw=" 
 provider="IBMJCE" 
 location="${WAS_HOME}/profiles/TDSWebAdminProfile/etc/key.p12" 
 type="JKS" 
 fileBased="true" 
 hostList="" 
 managementScope="ManagementScope_DefaultNode_1"/>
<keyStores xmi:id="KeyStore_DefaultNode_11" 
 name="trust.p12" 
 password="{xor}CDo9Hgw=" 
 provider="IBMJCE" 
 location="${WAS_HOME}/profiles/TDSWebAdminProfile/etc/trust.p12" 
 type="JKS" 
 fileBased="true" 
 hostList="" 
 managementScope="ManagementScope_DefaultNode_1"/>