Apply own PEM and KEY certificate SSL configuration in EEM
Article ID: 276143
Updated On:
Products
CA Process Automation Base
CA Service Desk Manager
CA Service Management - Asset Portfolio Management
CA Service Management - Service Desk Manager
CA Service Catalog
Issue/Introduction
One may have a need to apply a custom PEM and KEY certificate to EEM to facilitate SSL communication with a known certificate. The following describes the steps to apply such a certificate
Environment
EEM 12.5.x and higher
Resolution
The files of interest, which include the example crt and key files, and the igateway.conf file, are all to be stored or accessed from X:\Program Files\CA\SC\iTechnology\
Backup, then edit the igateway.conf file and make the following change
Original text:
<Connector name="defaultport">
<port>5250</port>
<mustlisten>true</mustlisten>
<conntype/>
<conntimeout>120</conntimeout>
<peektimeout>30</peektimeout>
<maxconnections>1000</maxconnections>
<maxrequestbytes>10000000</maxrequestbytes>
<maxpiperequests>10</maxpiperequests>
<maxAcceptRate/>
<certType/>
<certURI/>
<certPW/>
<keyURI/>
<keyPW/>
<secureProtocol/>
<cipherlist/>
</Connector>
Modified:
<Connector name="defaultport">
<port>5250</port>
<mustlisten>true</mustlisten>
<conntype/>
<conntimeout>120</conntimeout>
<peektimeout>30</peektimeout>
<maxconnections>1000</maxconnections>
<maxrequestbytes>10000000</maxrequestbytes>
<maxpiperequests>10</maxpiperequests>
<maxAcceptRate/>
<certType/>
<certURI>EXAMPLE-CERT.crt</certURI>
<certPW/>
<keyURI>EXAMPLE-CERT.key</keyURI>
<keyPW/>
<secureProtocol/>
<cipherlist/>
</Connector>
In the above, "EXAMPLE-CERT.crt" is the pem certificate and "EXAMPLE-CERT.key" is the corresponding key cert file. The password tag "keyPW" is omitted as this combination of SSL config does not require a password
Additional Information
Please see KB Article 18977 for corresponding instructions on using a p12 certificate (password needed)
Feedback
Yes
No
Powered by
