Trading Networks 10.7 | Administering and Monitoring B2B Transactions | Integration Server Administrator's Guide | Configuring Integration Server for Secure Communications | Using Multiple Client Certificates with SSL Servers
 
Using Multiple Client Certificates with SSL Servers
 
Setting Up a Remote Server Alias
Coding Your Flow Services
Integration Server can present a single client certificate to all SSL servers or it can present different client certificates to different SSL servers. In addition, Integration Server can present certificates provided for this purpose by other organizations. (Some organizations prefer to provide certificates signed by their own CAs for clients to use, rather than accept the client's certificate.) You control which certificate Integration Server presents to an SSL server by using remote server aliases or special public services.
You can set up the Integration Server to present client certificates from multiple organizations. This involves obtaining the certificates, setting them up on Integration Server and using remote aliases or special public services to control which certificate is being presented.
The following table provides a check list of tasks for presenting different client certificates to different SSL servers.
Task
Notes
Obtain copy of each certificate you want to use.
Create keystores for the certificates and then use Integration Server to create a keystore alias. For information about obtaining certificates, see Obtaining the Public Keys and Certificates of the Partner Application or Resource. For information about creating keystores, see Creating a Keystore and Truststore. For information about creating a keystore alias, see Creating Keystore Aliases.
Set up a remote server alias.
Although not required, using a remote server alias is a convenient way of directing particular certificates to particular SSL servers.
Code your flow services to present different certificates.
How you code your flow services depends on whether or not you have defined a remote server alias for the remote server.