Show TOC

Certificate ManagementLocate this document in the navigation structure

Use

Certificate management for the Adapter Engine is a prerequisite for using certificates in adapter configurations for logging on to databases, queue systems, FTP servers, or the Integration Server.

If no certificate is entered in certificate management, the Adapter Engine will accept any certificate. Authentication does not then take place.

Integration
  • You have installed the Adapter Engine and the required adapters.
  • You have started the Adapter Engine and have called it from your Web browser.
  • You have selected the Certificate Management menu option on the configuration screen, and are now in the Certificate Management menu.
Prerequisites
  • You have installed the Adapter Engine and the adapter you require, started the Adapter Engine and called it using your web browser. On the configuration screen, you have chosen the Certificate Management menu option, and are now in the Certificates menu.
  • You have set up the Integration Server to support SSL.
Features

This menu option is available for users with the Adapter Engine Administrator or Adapter Configurator role.

In the Certificates menu you have the following options:

  • Display Certificates

    Displays all certificates saved in the Adapter Engine.

  • Insert Certificate

    Insert a certificate into the Adapter Engine.

    Choose Browse and select the certificate.

  • Delete Certificate

    To delete a certificate, select the certificate in the list and choose Delete.

Activities

Set Up Adapter Engine as SSL Server

To use the Adapter Engine as an SSL server (for receiver adapters) for performing certificate-based authentication, make the following settings:

  1. Choose Services → HttpServer.
    • Enter HTTP.authentication=none.
    • Enter HTTP.transmission=SSL.
    • Enter the path to the key pair for parameter HTTP.SSLcertificate.

      Enter the path relative to the installation directory for the Adapter Engine.

      The key pair must be in P12 or PFX file format.

    • To protect the key pair file, you can enter a password for parameter HTTP.SSLcertificatePassword.
    • To activate the validation of the client certificate, enter HTTP.SSLauthenticate=true.

    More information: Services

  2. Import the public SSL client certificate and the corresponding root certificate to certificate management.

    Enter the complete certificate path.

  3. Start the Adapter Engine.

Set Up Adapter Engine as SSL Client

To use certificates for the authentication in sender adapters, make the following settings:

  1. Choose Adapter and then select the adapter for which you want to set up authentication using a certificate.
    • Enter a target URL that uses the HTTPS protocol for parameter XI.TargetURL.
    • Enter the path to the key pair for parameter SSLcertificate.

      Enter the path relative to the installation directory for the Adapter Engine.

      The key pair must be in P12 or PFX file format.

    • To protect the key pair file, you can enter a password for parameter SSLcertificatePassword.
    • To check the server certificate by using the certificate in certificate management, enter SSLauthentication=true.
  2. Import the SSL server certificate and the corresponding root certificate to certificate management.

    Enter the complete certificate path.

  3. Start the Adapter Engine.