Assigning the Key Pair to Use for a Specific SSL Port 

Prerequisites

·        The port to use for SSL is set with the Ports property in the HTTP Provider service on the dispatcher. The default port is 5<instance_number>01. (See J2EE Engine Ports.)

·        The key pair that the server process should use for SSL exists as a PRIVATE KEY entry in the service_ssl view in the Key Storage service.

·        If the server process is to accept client certificates for authentication, then the CA root certificates belonging to the CAs that you accept as issuing CAs exist as CERTIFICATE entries in the TrustedCAs view in the Key Storage service.

·        The SSL Provider service is running on each dispatcher and server instance that is to support SSL.

Procedure

For each server process that is to support SSL:

...

       1.      Select the SSL Provider service.

       2.      Select the corresponding J2EE dispatcher.

The available sockets and their corresponding ports appear in the Configuration pane.

       3.      Select the socket that corresponds to the SSL port you want to configure.

       4.      In the Server Identity  tab page, select the key pair entry to use for this port. (Choose Add.)

       5.      If the server process is to accept the use of client certificates for authentication, then set this option in the Client Authentication tab page. Also maintain the list of trusted certificates in the Trusted Certification Authorities section.

For more information, see Managing the Credentials and Trusted Certificates to Use SSL and Configuring the Use of Client Certificates for Authentication.

Result

The server uses the specified key pair for SSL connections to the designated port.

You can now test the SSL connection.