Specifying a Keystore File for a Port
Use this procedure to specify a keystore file for a port that uses the FTP, FTPS, HTTP, or HTTPS protocol. This keystore file overrides any global SSL encryption settings that apply to all ports on the server. For information about specifying global SSL encryption settings, see
Specifying Encryption Settings.
To specify a keystore file for a port
1. In My webMethods: Administration > Integration > Managed File Transfer > Server Management.
3. On the Ports tab, select an FTP, FTPS, HTTP, or HTTPS port from the list of ports.
4. Click the Advanced tab.
Note:
The remaining steps in this procedure pertain to the SSL Options section.
5. For Keystore Location, specify the path to the keystore file.
Note:
For an ActiveTransfer Gateway, specify the path of the server on which ActiveTransfer Gateway is running.
6. In the Keystore Password box, type the keystore password.
7. In the Private Key Password box, type the private key password.
8. If you want to block all connections from the client when the client does not have a valid client certificate key password, select the Require valid client certificate check box.
Note:
When this check box is selected, ActiveTransfer Server expects the clients requesting a server connection to present a valid certificate. The certificate should match one of the certificates stored in the truststore. To store valid certificates, you must create a truststore file in the same location as the keystore file, with the name keystoreName_trust. For example, if the keystore file name is server_ks.jks, the truststore name should be server_ks.jks_trust. You should add all of the valid client certificates to this truststore.
9. Click Save.