IBM Tivoli Monitoring > Version 6.3 Fix Pack 2 > Administrator's Guide > Securing communications > Configure TLS/SSL communication with the Authorization Policy Server

IBM Tivoli Monitoring, Version 6.3 Fix Pack 2

Configure TLS/SSL communication between the portal server and the Authorization Policy Server

Add the public signer certificate used by the Tivoli Authorization Policy Server to the portal server's TEPS/e trust store to configure TLS/SSL.

If you requested a new digital certificate for Authorization Policy Server, wait until the certificate has been received before performing this procedure.

Ensure the TEPS/e administration console is enabled. For detailed steps, including information on how to log on, see Start the TEPS/e administration console.


This step assumes that the public signer certificate is located on the portal server computer. For example, C:\policyauthcerts\PolicyAuthSignerCert.arm or C:\policyauthcerts\CASignerCert.arm. This location is referenced in this procedure as <policyauthsignercert>.


Procedure

  1. Log on to the TEPS/e administration console.

  2. Select Security → SSL certificate and key management.

  3. In the Related Items area, click the Key stores and certificates link and in the table click the NodeDefaultTrustStore link.

  4. In the Additional Properties area, click the Signer certificates link and in the page that is displayed, click Add.

  5. In the page that is displayed specify the following information:

    • Set Alias to the desired label for the certificate. For example, Authorization Policy Server Signer Certificate.

    • Set File name to the location of the public signer certificate. For example, <policyauthsignercert>.

    • Leave the Data type as Base64-encoded ASCII data.

  6. Click OK, then Save.

  7. Reconfigure the portal server to use HTTPS instead of HTTP for the Authorization Policy Server connection. For details on reconfiguring the Authorization Policy Server connection parameters, see Enable authorization policies in the portal server.


Results

HTTPS is now used between the Authorization Policy Server and the portal server.


Parent topic:

Configure TLS/SSL communication with the Authorization Policy Server

+

Search Tips   |   Advanced Search