Adding SSL security to a WebSphere Application Server v5.x

The SSL protocol provides a secure connection between a client and server. The SSL protocol runs above TCP/IP and below application protocols such as HTTP, LDAP, and IIOP, and provides trust and privacy for the transport data. Depending upon the SSL configurations of both the client and server, various levels of trust, data integrity, and privacy can be established.

The SSL (Secure Socket Layer) configuration repertoire allows you to define any number of SSL settings which can be used to make HTTPS, IIOPS or LDAPS connections. Some of the security features provided by SSL are data encryption to prevent seeing sensitive information while data flows across the wire. Data signing prevents unauthorized modification of data while data flows across the wire. Client and server authentication ensures that you are talking to the appropriate person or machine.

Note: SSL security can only be added to a WebSphere v5.x server.

To add SSL security,...

1. In the Servers view, double-click the WebSphere Application Server v5.x to open it. The server editor opens.

2. Click the Security tab at the bottom of the editor.

3. Click the Add button beside the SSL Configuration Repertoires list box. The Add SSL Configuration dialog box opens.

4. In the dialog box, fill in the values for the SSL configuration. Some values might be selected from drop-down lists, where items have already been created, such as key file format, and trust file format. For more information about any of the fields on this dialog box, select the field and then press F1. Click OK.

5. Save your changes and close the editor.

Before deleting SSL configurations from the repertoire, remember that if an SSL configuration alias is referenced somewhere, and it is deleted here, an SSL connection will fail if the deleted configuration is accessed.