BW DATA FORMAT| WISHTREE TECHNOLOGIES | LEARNING | TIBCO TRAINING |CORPORATE | TRAINING | CLASSROOM
SSL | Business works | BUSINESSWORKS INTRODUCTION | COURSE CONTENT | WISHTREE TECHNOLOGIES |...
-
Upload
wishtreetechnologies -
Category
Documents
-
view
18 -
download
0
description
Transcript of SSL | Business works | BUSINESSWORKS INTRODUCTION | COURSE CONTENT | WISHTREE TECHNOLOGIES |...
TIBCO SSL CERTIFICATE
WISHTREE TECHNOLOGIES CONFIDENTIAL: This document is for your company's internal use only and may not be copied nor distributed to another third party.
SSL certificates
• A protocol developed by Netscape.
• It is a whole new layer of protocol which operates above the Internet TCP protocol and below high-level application protocols.
• SSL uses TCP/IP on behalf of the higher-level protocols.
• Allows an SSL-enabled server to authenticate itself to an SSL-enabled client.
• Allows the client to authenticate itself to the server.
• Allows both machines to establish an encrypted connection.
WISHTREE TECHNOLOGIES CONFIDENTIAL: This document is for your company's internal use only and may not be copied nor distributed to another third party.
What is Keytool?
• The ‘Keytool’ is a utility provided in the Java 2 SDK which is used to create a certificate.
• You will have to create a certificate as you own the server.
• It should be run as a command line utility.
• Available in the bin folder of J2SDK.
WISHTREE TECHNOLOGIES CONFIDENTIAL: This document is for your company's internal use only and may not be copied nor distributed to another third party.
Keytool -genkey
The my-keystore.jks file will be created at the current location
WISHTREE TECHNOLOGIES CONFIDENTIAL: This document is for your company's internal use only and may not be copied nor distributed to another third party.
Keytool• -alias is used to give a name to your key. It should be unique for its
purpose. Here it is MY_HOME_SERVER.
• -keyalg is encryption algorithm type.Here it is RSA.(Rivert,Shamir,Adleman)
• -keypass is the password affiliated to key. Here it is Ninja@123 • -storepass is the password affiliated to the repository. Here it is
Ninja@123 • my-keystore.jks is name of the file which acts as repository keys.
WISHTREE TECHNOLOGIES CONFIDENTIAL: This document is for your company's internal use only and may not be copied nor distributed to another third party.
Keytool
• When we fill all the CN, OU, O, L, ST & C details, the key called MY_HOME_SERVER will be stored in the repository my-keystore.jks
• This entry in the my-keystore.jks would have the public key as well as the private key.
• You would now require to publish the public key to the world.
WISHTREE TECHNOLOGIES CONFIDENTIAL: This document is for your company's internal use only and may not be copied nor distributed to another third party.
Keytool
• To publish the public key to the external world, we need to extract it from the entry we created in the my-keystore.jks repository
• We can use the export option in the keytool command to achieve the desired result.
WISHTREE TECHNOLOGIES CONFIDENTIAL: This document is for your company's internal use only and may not be copied nor distributed to another third party.
Installing Key
• Server Side
WISHTREE TECHNOLOGIES CONFIDENTIAL: This document is for your company's internal use only and may not be copied nor distributed to another third party.
Keytool -export
You can give this certificate to anyone who wants to connect to your server
The public key also known as the certificate will be stored in the file named my-server.cer
WISHTREE TECHNOLOGIES CONFIDENTIAL: This document is for your company's internal use only and may not be copied nor distributed to another third party.
Server Identity
Create identity from the ‘GENERAL’ pallete
Make sure the URL consists of 3 forward slashes, otherwise it will not work as
desired
Identity file
JKS
WISHTREE TECHNOLOGIES CONFIDENTIAL: This document is for your company's internal use only and may not be copied nor distributed to another third party.
HTTPS Connection
WISHTREE TECHNOLOGIES CONFIDENTIAL: This document is for your company's internal use only and may not be copied nor distributed to another third party.
BW process for Server Side
WISHTREE TECHNOLOGIES CONFIDENTIAL: This document is for your company's internal use only and may not be copied nor distributed to another third party.
Import & Install Certificate
• Client Side
WISHTREE TECHNOLOGIES CONFIDENTIAL: This document is for your company's internal use only and may not be copied nor distributed to another third party.
Keytool -import
Get the my-server.cer from the server authority which is publicly available and paste it into the desired
folder
WISHTREE TECHNOLOGIES CONFIDENTIAL: This document is for your company's internal use only and may not be copied nor distributed to another third party.
Client Identity
WISHTREE TECHNOLOGIES CONFIDENTIAL: This document is for your company's internal use only and may not be copied nor distributed to another third party.
Import Certificate in BW
WISHTREE TECHNOLOGIES CONFIDENTIAL: This document is for your company's internal use only and may not be copied nor distributed to another third party.
Imported Certificate
WISHTREE TECHNOLOGIES CONFIDENTIAL: This document is for your company's internal use only and may not be copied nor distributed to another third party.
Configuring HTTP request(Client)
WISHTREE TECHNOLOGIES CONFIDENTIAL: This document is for your company's internal use only and may not be copied nor distributed to another third party.
Check the Certificate in the Browser
WISHTREE TECHNOLOGIES CONFIDENTIAL: This document is for your company's internal use only and may not be copied nor distributed to another third party.
View Certificate
WISHTREE TECHNOLOGIES CONFIDENTIAL: This document is for your company's internal use only and may not be copied nor distributed to another third party.
Required Output using SSl Certificates in Browser
WISHTREE TECHNOLOGIES CONFIDENTIAL: This document is for your company's internal use only and may not be copied nor distributed to another third party.
Output in BW designer (Client)
WISHTREE TECHNOLOGIES CONFIDENTIAL: This document is for your company's internal use only and may not be copied nor distributed to another third party.
Output in BW Designer (Server)
JDBC
WISHTREE TECHNOLOGIES CONFIDENTIAL: This document is for your company's internal use only and may not be copied nor distributed to another third party.
THANK YOU • Contact Us:
• Wishtree Technologies
Suite 311, Bldg B,Ganga Osian(GO) Square IT Park, Wakad Rd, Kaspate Wasti,Wakad, Pune, 411057
• Contact No. +912060123456
• Email id:[email protected]
• US Contact No. +415-251-5098
• UK Contact No. +44 7937436285
• Mobile No. India +91 9687206535
• Website: http://www.wishtreetech.com