OnRamp for Commerce One MarketSite 3.5 SP1 | webMethods OnRamp for Commerce One MarketSite Adapter Documentation | webMethods OnRamp for CommerceOne MarketSite Adapter Installation and User’s Documentation | Setting Up Secure Communication with MarketSite | Communicate as a Server | Configure SSL Communication with Any MarketSite Client
 
Configure SSL Communication with Any MarketSite Client
To configure Integration Server to communicate with a MarketSite client, you create an HTTPS listener, obtain a certificate file for each entity in the certificate chain, and instruct Integration Server to send the complete certificate chain to clients that connect to Integration Server via SSL.
*To configure SSL communication with any MarketSite client
1. Open Integration Server Administrator and create a listener.
*If you are communicating with a MarketSite version earlier than 4.0, create a webMethods/HTTPSForMarketConnect listener.
*If you are communicating with a MarketSite version 4.0 or later, create a webMethods/HTTPS listener.
For instructions on creating listeners, see the webMethods Integration Server Administrator’s Guide for your release. Make note of the package with which you associated the listener.
2. For each entity in the Integration Server certificate chain, obtain a certificate file in the DER format used by Integration Server and place the files in a directory that is accessible to Integration Server (for example, the Integration Server_directory \config directory).
If you are not using a Windows system, ask your CA how to obtain the files. If you are using a Windows 2000 system, you can use a wizard to obtain the files, as follows:
a. Double-click your certificate file. The system opens the Certificate interface. Click the Certification Path tab to display Integration Server's certificate chain.
b. Double-click a CA entity in the chain. The system opens another Certificate interface. Click the Details tab.
c. Click Copy to File to open the wizard. Export the file to DER encoded binary X.509.
d. Repeat these steps for each CA entity in the chain.
3. Shut down Integration Server.
4. Navigate to the Integration Server_directory\package\config directory, where package is the package with which you associated the HTTPSForMarketConnect listener. Open the listener.cnf file in a text editor. The file is an XML file and contains information about each listener that is associated with the package. Instruct Integration Server to send its complete certificate chain to clients that connect to Integration Server via SSL by editing the file as follows:
a. Locate the record for the HTTPSForMarketConnect listener.
b. Delete these lines:
<value name="signedCert"></value>
<value name="caCert"></value>
c. Locate these lines:
<array name="certChain" type="value" depth="1">
<value></value>
<value></value>
</array>
d. Edit the lines to list the entities in the certificate chain as shown below, where cert.der is the DER-encoded certificate file for Integration Server, intermediate.der is the DER-encoded certificate file for the intermediary CA signer, and root.der is the DER-encoded certificate file for the root CA:
5. Restart Integration Server.