KEMBAR78
SSL Implementation Guide | PDF | Transport Layer Security | Network Architecture
Scribd
Upload
9 views6 pages

SSL Implementation Guide

Uploaded by

yashsureshraypure.eidiko
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as DOCX, PDF, TXT or read online on Scribd
9 views6 pages

SSL Implementation Guide

Uploaded by

yashsureshraypure.eidiko
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as DOCX, PDF, TXT or read online on Scribd
You are on page 1/ 6

SSL

The main purpose of SSL (Secure Sockets Layer) is to ensure secure


communication between applications by encrypting the data exchanged
over the network.
SSL helps to :
1. Encrypt Data :- Protecting the data by encrypting .
2. Authenticate parties :- Ensuring that data is exchange
only with trusted entities.
3. Maintain Data Integrity :- The data sent is not
tampered with during transmission.

We can implemented SSL in two way ,


a. Local System (Both Consumer and Provider Flow in same System)
b. Remote System (Consumer in one system & provider in Remote
System)
There are two type of communication ,
a. One way (Only Consumer send request)
b. Two way (Both can able to send request)

For the Remote System ,


For One Way ,
Provider (Kay-Stored)
Consumer (Trust-Stored) ------> cert.arm (Send by Provide)
For Two Way ,
Provider(Kay-Stored&Trust-Stored ) ---> cert.arm (Send to
Consumer)
Consumer(Kay-Stored&Trust-Stored)------>cert1.arm(Send to
Provide)

Step 1 :- Create two message flow


1. Provider Flow ---> httpInput ----- httpRequest -----
httpReply
2. Consumer Flow ---> httpInput ---- Compute ----- httpReply

Note :- In httpInput does not select USE HTTPS which is present in Basic
properties. (Other Properties are some)

Step 2 :- httpRequest Properties


In the Basic Properties give URL like ,
https://localhost:7843/provider

Use protocol as :- https

Use port Number :- 7843

In SSL Properties Select Protocol As TLS .

(Other Properties are same)

Step 3 :- Create One Folder.

Step 4 :- Go to Console Use command ---> ikeyman

Step 5 :- One window will be open


Here we are creating Key-Store , Give name for Key-Store.

And Give the path of our folder in Location section.

Than Set Password ----> OK

After That One File Will Be Created In Our Folder --> Key_Store.jks

Step 6 :- Create New Self-Signed


Step 7 :- Extract Certificate

Give Folder Path ----> OK

cert.arm Certificate will be downlow in our Folder.

Step 8 :- Now create Trust-Stored

One Trust_Store.jks file will be created in out Folder.

Give Same Password .

Step 9 :- Validate
Step 10 :- Go to console and execute some command.

1) Check the current properties of broker

mqsireportproperties broker1 -o BrokerRegistry -r

2) To change the properties of broker .

For Kay-Stored

Mqsichangeproperties broker1 -o BrokerRegistry -n


brokerKeystoreFile -v "C:\SSL_R_GOTYA\KeyRemorte.jks"

For Trust-Stored

mqsichangeproperties broker1 -o BrokerRegistry -n


brokerTruststoreFile -v "C:\SSL_R_GOTYA\TrustRemorte.jks"

3) To set the username and password

For Kay-Stored

mqsisetdbparms broker1 -n brokerKeystore::password -u ignore -p


sarasu10

For Trust-Stored

mqsisetdbparms broker1 -n brokerTruststore::password -u ignore -


p sarasu10

Step 11 :- Deploy Application and give input

You might also like