| Author |
Message
|
| chaitu |
 Posted: Sat Jul 09, 2016 9:44 am Post subject: SSL Set up in IIB |
 |
|
Voyager
Joined: 15 Apr 2014
Posts: 89
|
Hi All,
I need to set a ssl in soap request node. I searched so many articles and tried all those but nothing is worked I am failing in some steps. Can any one of you sent me a link of a document which is really useful. I am using IIB v9.
Thanks. |
|
| Back to top |
|
 |
| smdavies99 |
| Posted: Sat Jul 09, 2016 10:04 am Post subject: |
|
|
Jedi Council
Joined: 10 Feb 2003
Posts: 6076
Location: Somewhere over the Rainbow this side of Never-never land.
|
There are numerous threads here about this very issue.
Why don't you show us what you have done in detail and what errors you are getting,
Then we can help you directly.
_________________
WMQ User since 1999
MQSI/WBI/WMB/'Thingy' User since 2002
Linux user since 1995
Every time you reinvent the wheel the more square it gets (anon). If in doubt think and investigate before you ask silly questions. |
|
| Back to top |
|
|
| chaitu |
| Posted: Sun Jul 10, 2016 11:45 pm Post subject: |
|
|
Voyager
Joined: 15 Apr 2014
Posts: 89
|
Hi All
I am followingthe below link
| Code: |
http://www.ibm.com/developerworks/websphere/library/techarticles/1205_bhat/1205_bhat.html
|
I runned the two commands
| Code: |
keytool -genkey -alias IB9NODE -keystore IB9NODE.jks -keysize 2048
for keystore generate
|
and also for generating CSR
| Code: |
keytool -certreq -alias IB9NODE -keystore IB9NODE.jks -file BROKER1.csr
|
for Import a root or intermediate CA certificate to the existing keystore
| Code: |
keytool -import -trustcacerts -alias root -file Thawte.crt -keystore IB9NODE.jks
for this I am getting error like
keytool error (likely untranslated): java.io.FileNotFoundException: Thawte.crt (
The system cannot find the file specified.)
|
could any one guide me to go further. |
|
| Back to top |
|
|
| chaitu |
| Posted: Sun Jul 10, 2016 11:48 pm Post subject: |
|
|
Voyager
Joined: 15 Apr 2014
Posts: 89
|
| And also I was given a sample.jks file which I need to use for SSL. |
|
| Back to top |
|
|
| smdavies99 |
| Posted: Mon Jul 11, 2016 1:24 am Post subject: |
|
|
Jedi Council
Joined: 10 Feb 2003
Posts: 6076
Location: Somewhere over the Rainbow this side of Never-never land.
|
So your error message says that it can't find the 'Thawte.crt' file.
Looking at the Developerworks doc you linked, this file is needed before you start. That's why you get the error.
_________________
WMQ User since 1999
MQSI/WBI/WMB/'Thingy' User since 2002
Linux user since 1995
Every time you reinvent the wheel the more square it gets (anon). If in doubt think and investigate before you ask silly questions. |
|
| Back to top |
|
|
| chaitu |
| Posted: Mon Jul 11, 2016 2:21 am Post subject: |
|
|
Voyager
Joined: 15 Apr 2014
Posts: 89
|
Hi smdavies99,
I had a sample.jks file I need to use this file to set up ssl. I had a question that am I going with correct steps because all the below commands are to create certificate I guess no where I am using my jks file.
out of my understanding I need not do run all the commands I can start from
| Code: |
mqsireportproperties BROKER1 -o BrokerRegistry -r
BrokerRegistry
uuid='BrokerRegistry'
brokerKeystoreType='JKS'
brokerKeystoreFile=' /home/brkr/BROKER1.jks’
brokerKeystorePass='brokerKeystore::password'
brokerTruststoreType='JKS'
brokerTruststoreFile=' /opt/IBM/mqsi/7.0/jre16/lib/security/cacerts'
brokerTruststorePass='brokerTruststore::password'
httpConnectorPortRange=''
httpsConnectorPortRange=''
modeExtensions=''
operationMode='enterprise'
shortDesc=''
longDesc='''
|
Could anyone tell me the steps. |
|
| Back to top |
|
|
| smdavies99 |
| Posted: Mon Jul 11, 2016 4:04 am Post subject: |
|
|
Jedi Council
Joined: 10 Feb 2003
Posts: 6076
Location: Somewhere over the Rainbow this side of Never-never land.
|
What is wrong with
Configuring Message Broker to serve HTTP/HTTPS requests
section of the guild you referenced at the start of this thread?
_________________
WMQ User since 1999
MQSI/WBI/WMB/'Thingy' User since 2002
Linux user since 1995
Every time you reinvent the wheel the more square it gets (anon). If in doubt think and investigate before you ask silly questions. |
|
| Back to top |
|
|
| chaitu |
| Posted: Mon Jul 11, 2016 7:37 am Post subject: |
|
|
Voyager
Joined: 15 Apr 2014
Posts: 89
|
Error is
| Code: |
Correct the arguments and rerun the command.
BIP8004E: Invalid argument 'BrokerRegistry' specified.
Argument specified should be well formed.
Correct and reissue the command.
|
|
|
| Back to top |
|
|
| fjb_saper |
| Posted: Mon Jul 11, 2016 7:41 am Post subject: |
|
|
Grand High Poobah
Joined: 18 Nov 2003
Posts: 20768
Location: LI,NY
|
| chaitu wrote: |
Error is
| Code: |
Correct the arguments and rerun the command.
BIP8004E: Invalid argument 'BrokerRegistry' specified.
Argument specified should be well formed.
Correct and reissue the command.
|
|
The error is of little to no value without the command that spawned it... 
_________________
MQ & Broker admin |
|
| Back to top |
|
|
| ganesh |
| Posted: Mon Jul 11, 2016 11:39 am Post subject: |
|
|
Master
Joined: 18 Jul 2010
Posts: 294
|
Did you intend to leave the default cert store or where you going to set a path to your jks file ?
"brokerTruststoreFile=' /opt/IBM/mqsi/7.0/jre16/lib/security/cacerts'"
Take a user trace or a service trace to see what the exception is, a trace will have more details of what exactly is the problem. |
|
| Back to top |
|
|
|
|
