Enabling ActiveTransfer Server to Use the User-Certificate Mapping in Integration Server or My webMethods
By default, ActiveTransfer Server uses the CN value in the client certificate as the user name for the client who logs in. To enable ActiveTransfer to use the user mapped to the certificate in Integration Server or My webMethods as the username, you must set the ActiveTransfer property, mft.server.ssl.useISCertMap in the \packages\WmMFT\config\properties.cnf file to true. This property can take the following values:
False (default)
ActiveTransfer Server considers the CN value in the certificate as the username.
True ActiveTransfer Server looks for the user mapped to the client certificate in
Integration Server or
My webMethods and considers the same as the username.
ActiveTransfer Server needs the user corresponding to the certificate to fetch the virtual folders configured for the user. If the CN value in the certificate is used as the user, the administrator has the additional responsibility of creating users with the exact name as the CN value for the entire set of client certificates.
Note:
Ensure that the user to certificate mapping has been configured in Integration Server or My webMethods for the users who will log on to the ActiveTransfer Server configured as an SSL server. Use one of the following methods to configure the user to certificate mapping:
1. In Integration Server, Security > Certificates > Configure Client Certificates.
a. Specify the Certificate Path and User.
b. Click Import Certificate.
2. Alternatively, in My webMethods, Administration > System-Wide > User Management > Certificates.
a. Click Add New Certificate.
b. Browse to the Certificate File.
c. Specify the Certificate Type.
d. Click Upload.