ALERT: Some images may not load properly within the Knowledge Base Article. If you see a broken image, please right-click and select 'Open image in a new tab'. We apologize for this inconvenience.

Enable HTTPS and SSL between All DevTest Components Using Your Own Keystore


Article ID: 109006


Updated On:


CA Application Test Service Virtualization CA Continuous Application Insight (PathFinder)


How to enable HTTPS and SSL between DevTest Components Using Your Own Keystore




All supported releases and platforms of DevTest.


The keystore will need to have the entire needed certificate chain (root, intermediate, server).  

Put the keystore in the DEVTEST_HOME folder of where each component is running.

Update these properties files and restart DevTest Components: file of where Identity Access Manager (IAM) is running:  By default IAM is https enabled.

iam.keystore=${IAM_HOME}certs/<your keystore here>
iam.keystore.password=<your keystore password, it gets stored in vault after IAM is started>
iam.truststore=${IAM_HOME}certs/<your trustore here, normally your keystore>
iam.truststore.password=<your trustore password, it gets stored in vault after IAM is started> file of where your Enterprise Dashboard is running: 

dradis.webserver.ssl.keystore.password=(your keystore password) 
dradis.webserver.ssl.keymanager.password=(your keymanager password) file of where Registry is running: 

devtest.enterprisedashboard.https.enabled=true of where Portal is running: of your Registry)


phoenix.ssl.keystore=${LISA_HOME}/(your keystore) 
phoenix.ssl.keystore.password=(your keystore password) 
phoenix.ssl.keymanager.password=(your keymanager password) 

reshub.hostname=(hostname of your Portal) file of where each DevTest component is installed in case distributed (in case of multiple Simulators and VSEs):{{LISA_HOME}}/(your keystore){{LISA_HOME}}/(your keystore){{LISA_HOME}}/(your keystore){{LISA_HOME}}/(your keystore) 

lisa.webserver.ssl.keystore.location={{LISA_HOME}}/(your keystore) 
lisa.webserver.ssl.keystore.password=(your keystore password) 
lisa.webserver.ssl.keymanager.password=(your keymanager password) 



vscatalog.vmoptions (if running as a server) or vscatalogService.vmoptions (if running as a service) of where the VS Catalog is running:                                                  <=== where your IAM is running
-Dserver.ssl.key-store=file:///C:/DevTest10.6.0/VSCatalog/YOURKEYSTORE                        <=== fully qualified path to where your keystore is    (this example on Windows)
-Dserver.ssl.key-password=YOURKEYSTOREPASWD                                                           <=== password of keystore (note it will not get encrypted)
-Dserver.ssl.key-alias=KEYSTOREALIASNAMEOFYOURKEYPAIR                                       <=== make sure the alias name has no spaces 

 add a truststore in to vscatalog.vmoptions: 

4) alternatively  you can to add cert to cacerts file in vscatalog_install_folder/jre/lib/security 


Note: When starting SSL enabled Broker service , if you face any SSL issues, please see the document link below


Additional Information

Of SSL, SNI, Java and DevTest