Generating client certificates
You can generate client certificates in the Self Service, download the generated certificates, and then use these certificates for authentication to access the Sterling Order Management System application.
Before you begin
You must have the Developer role or the Organization Administrator role to generate a client certificate.
About this task
Note: The client certificates for IBM MQ and the client certificates for the Sterling
Order Management System tools are different and must not be used interchangeably.
- The Client certificates can be used in the browser to access the Sterling Order Management System application.
- The IBM MQ certificates can be used for external systems to connect to the IBM MQ servers.
A certificate is valid for one year. You can view the expiry date of the certificate under the
Certificates tab. A notification alert is sent to the owner of the
certificate for the certificates that are going to expire after a month. Alerts are sent even for
certificates that are expiring after a week and after a day. When you receive a notification, you
must generate a new certificate manually and use the new certificate. The Organization
Administrator
receives a summary of all the certificates that are going to expire in a month or in a
week.
Note: Expired certificates are removed from the application and database after 90 days of
expiration.
The following table lists the actions for the client certificates that a user with the Developer and the Organization
Administrator role can do.
Role | Actions |
---|---|
Developer |
|
Organization Administrator |
|
Procedure
To generate a client certificate, complete the following steps.