Set Up the SSL Configuration

When you plan to use SSL connections between the end-to-end automation adapter and end-to-end agent, you need to set up the SSL configuration file /customization-path/config/inge2eagt.ssl.properties.

You can set up the SSL configuration by one of the following techniques:
  • Create certificates residing in RACF.
  • Create keystore and truststore files residing in USS file system.

Customize the SSL configuration file using the RACF repository

For a detailed description of how to create certificates and a corresponding keyring in the RACF repository, see Setting Up E2E Automation RACF Keyrings.

Customize the SSL configuration file residing in the USS file system

The file /customization-path/config/inge2eagt.ssl.properties should point to the keystore and truststore to be used by the end-to-end agent. The directory /customization-path/ssl/ should contain
  • keystore with the certificate for the end-to-end agent
  • truststore with the public keys of all end-to-end automation adapters
You must complete the following extra steps:
  1. Customize the SSL configuration file.
    • Copy and modify the SSL configuration file inge2eagt.ssl.properties.
    • Encrypt the passphrase.
  2. Create the keystore file ing.ssl.e2eagent.jks and copy it into the /customization-path/ssl/ directory.
  3. Import the public key from all relevant keystores into the truststore ing.ssl.truststore.jks and copy it into the /customization-path/ssl/ directory.

For detailed information about each step above, see the following sections.