How to import certificates for REST or SOAP data sources in TIBCO Data Virtualization?
Article ID: KB0076001
Updated On:
| Products | Versions |
|---|---|
| TIBCO Data Virtualization | 7.0.x and higher |
Description
This articles explains a couple of methods to import the certificates for REST or SOAP datasources in TIBCO Data Virtualization.
Issue/Introduction
How to import certificates for REST or SOAP data sources in TIBCO Data Virtualization?
Environment
Any
Resolution
There are two ways to import the certificates for REST or SOAP data source in TIBCO Data Virtualization:
1. Import the certificates in data source truststore file (cis_datasource_truststore_strong.jks) which is located at "<<TDV Install Dir>>\conf\server\security" using keytool command. Please refer the below sample command for the same. You can also find the command on web to import the trusted certificates.
Sample Command to import the certificates (or certificate chain) into the truststore file:
a) cd <CIS_install_dir>\jre\bin\
b) Execute the command to import certificates:
keytool -keystore <CIS_install_dir>\conf\server\security\<truststore_file_name> -import -alias <certificate_alias> -trustcacerts -file <full_path_and_filename_of_CER_file
Use below command to see whether the certificate is present in the truststore file:
keytool -list -keystore <CIS-_install_dir>\conf\security\<truststore_file_name> | findstr <certificate_alias>
Please note that you need to restart TDV server after installing the certificates to take effect.
OR
2. You can directly import certificates to REST/SOAP data source. This process is quick and doesn't require any server restart. In order to import certificates to REST/SOAP data source, please open the REST/SOAP data source and then go to "Advanced" tab. Please refer the below screenshot for the same.
Please note that TDV support JKS or PKCS12 file format to be imported directly for REST/SOAP data source using "Advanced Tab" so you can choose a JKS or PKCS12 certificate keystore for authentication between TDV and any Web data source (REST/SOAP) that requires a trusted certificate.
1. Import the certificates in data source truststore file (cis_datasource_truststore_strong.jks) which is located at "<<TDV Install Dir>>\conf\server\security" using keytool command. Please refer the below sample command for the same. You can also find the command on web to import the trusted certificates.
Sample Command to import the certificates (or certificate chain) into the truststore file:
a) cd <CIS_install_dir>\jre\bin\
b) Execute the command to import certificates:
keytool -keystore <CIS_install_dir>\conf\server\security\<truststore_file_name> -import -alias <certificate_alias> -trustcacerts -file <full_path_and_filename_of_CER_file
Use below command to see whether the certificate is present in the truststore file:
keytool -list -keystore <CIS-_install_dir>\conf\security\<truststore_file_name> | findstr <certificate_alias>
Please note that you need to restart TDV server after installing the certificates to take effect.
OR
2. You can directly import certificates to REST/SOAP data source. This process is quick and doesn't require any server restart. In order to import certificates to REST/SOAP data source, please open the REST/SOAP data source and then go to "Advanced" tab. Please refer the below screenshot for the same.
Please note that TDV support JKS or PKCS12 file format to be imported directly for REST/SOAP data source using "Advanced Tab" so you can choose a JKS or PKCS12 certificate keystore for authentication between TDV and any Web data source (REST/SOAP) that requires a trusted certificate.
Feedback
Yes
No
Powered by
