Microgateway 10.15 | webMethods Microgateway Help | SSL Configuration in Microgateway | How Do I Secure Microgateway Communication with API Gateway Server?
 
How Do I Secure Microgateway Communication with API Gateway Server?
This use case explains how to secure Microgateway communication with API Gateway server using HTTPS protocol.
The use case starts when you have a Microgateway instance to be secured using HTTPS and you have the required certificates to secure the communication channel between Microgateway and API Gateway. It ends when the secure channel is configured for communication between Microgateway and API Gateway server.
*To secure Microgateway communication with API Gateway server
1. Configure truststore.
Microgateway may use any of the following:
*Default truststore: The default truststore is located in the cacerts of the Microgateway JRE.
*Custom truststore: Custom trusstore that may have a truststore configuration imported from API Gateway.
For details on importing truststore configuration from API Gateway, see Importing Truststore Configuration Configured in API Gateway
2. Ensure that Microgateway communicates over the HTTPS port exposed by the API Gateway server.
3. Configure Keystore.
Ensure that the required API Gateway server certificates are placed in the Microgateway keystore located at Install_dir/Microgateway/config/.
You can use self-signed certificates or custom CA. For details on configuring keystore for self-signed certificates, see Configuring Keystore in Microgateway
4. Ensure that the Microgateway cacerts are placed in the API Gateway server truststore located at API Gateway _Install_dir/common/config/.