Roadmap for Configuring SSL
The following table provides a high-level roadmap for configuring SSL on CentraSite.
Task | Activities | Notes |
Create CentraSite keys and certificates | ![*](bullet.gif) Generate a public key/private key pair. ![*](bullet.gif) Generate a certificate signing request (CSR) and send to the certificate authority (CA) for signing. ![*](bullet.gif) Receive validated certificate from the CA. ![*](bullet.gif) Import signed certificate into a keystore. | Required for one-way and two-way SSL connections. Refer to the documentation for Java keytool or your certificate management tool. |
Create keystore and truststore for CentraSite | ![*](bullet.gif) Create a keystore and import the signed certificate and private key. ![*](bullet.gif) Create a truststore and import the certificate of the signing CA. ![*](bullet.gif) Store the keystore and truststore in a secure CentraSite certificates directory. Important: | If you use a Java keytool to create the keystore, you cannot import an existing private key. You can use other tools such as OpenSSL or Portecle. |
| Required for one-way and two-way SSL connections. Refer to the documentation for your certificate management tool. |
Obtain certificates of webMethods Mediator | Use the CentraSite truststore to save: ![*](bullet.gif) Signed certificate of the Mediator. ![*](bullet.gif) Signed certificate of the CA for the Mediator's SSL certificate. | Required for one-way and two-way SSL connections. |