Migrating site security for WebSphere Commerce

If you are migrating from WebSphere Commerce Version 7.0 to WebSphere Commerce Version 8.0, manually migrate your security configurations.

Procedure

  1. If you enabled AES encryption on your WebSphere Commerce database and file system, migrate your encryption settings files.
    1. Copy the following files from your WebSphere Commerce Version 7.0 environment to the same location on your WebSphere Commerce Version 8.0 environment:
      • WC_installdir/components/sso/properties/ltpa.properties
      • WC_installdir/instances/instance_name/properties/vmm.properties
      • WC_installdir/instances/instance_name/search/commerce/properties/searchServer.properties
      • WC_installdir/instances/instance_name/xml/instance_name.xml
      • WC_installdir/instances/PwdMgr.xml
      • WC_installdir/properties/ILogJRulesConfiguration.properties
      • WC_installdir/wc.ear/xml/config/BusinessAuditDataCapture.xml
    2. Copy the following configuration files from your WebSphere Commerce Version 7.0 environment to your WebSphere Commerce Version 8.0 environment, and then deploy the files to your runtime application. For more information about this deployment process, see Deploying Java EE assets for a partial application.
      • WC_eardir/xml/config/BusinessAuditDataCapture.xml
      • WC_eardir/xml/config/FTP.xml
  2. If you used the Key Locator Framework (KLF) in WebSphere Commerce 7.0, migrate your key provider customizations. For more information about the KLF, see Key Locator Framework (KLF).
    1. Open your version 7.0 WC_eardir/xml/config/wc-server.xml file, and look for the KeysConfigFile parameter. The KeysConfigFile parameter points to a separate custom key configuration XML.
    2. Open your custom key XML file.
    3. The custom files that are referenced in this keys XML file must be copied to the same directories on your version 8.0 environment, and then deployed. For more information about this deployment process, see Deploying Java EE assets for a partial application.
  3. Review the values for<AES_DB> and <AES_Files> in your version 7.0 WC_installdir\xml\product.xml file. Ensure your version 8.0 WC_installdir\xml\product.xml file contains the same values for each section, for example: 
    <websphere>
    <commercesuite>
        ...
        <security>
            <AES_DB>true</AES_DB>
            <AES_Files>true</AES_Files>
        </security>
    </commercesuite>
</websphere>
  4. If you updated your version 7.0 to meet the NIST SP 800-131A security standards, complete steps 9 - 12 on the following document:
  5. Migrate any other custom security files that were part of your version 7.0 security solution by copying the files to your version 8.0 environment and deploying the files.