CentraSite comes with a sample keystore that contains self-signed certificates which are located in Software AG_directory/profiles/CTP/configuration/tomcat/conf and need be replaced if SSL-based authentication is to be used.

Acquire and provide your own server certificate and define its location with the parameter keystoreFile (replace the default value) in the Software AG Runtime properties file for SSL communication.

Note that the CN of the certificate needs to be identical to the URL the server is addressed under, without the "https://". For example, for a server reachable under https://MyWebServer:8443/, the CN needs to be MyWebServer. Software AG Runtime supports both Java keystores (keystoreType="JKS", which is the default), and PKCS#12 keystores (keystoreType="PKCS12"). Please set the keystore password accordingly (parameter keystorePass in the Software AG Runtime properties file).