Add your new Certificate Authority certificate to the keystore
to establish the trust relationship in SSL communication.
Before you begin
The keystore that you want to add the CA certificate to must
already exist.Expected state: the deployment manager and node agents
are started. The servers are stopped.
About this task
For additional information about default paths, see Directory conventions.
Procedure
- In the Integrated Solutions Console, click .
- Click .
- Click Add.
- Type a certificate alias in the Alias field.
The alias is how the certificate is referenced in the keystore.
- In the File name field, type the
file name and path to where the certificate is located.
- Select the appropriate file data type.
- Click Apply and then Save.
- Synchronize your changes to all nodes in the cluster. Click
- Select all nodes in the cluster, then click Full
Resynchronize.
- Open a command window.
- In the command window, stop the deployment manager and
wait for the command to finish, and then restart the deployment manager.
Use the user name and password that you provided when you enabled
administrative security to stop the deployment manager. Open a command
window and navigate to the
profile_root\bin
directory
and use the following commands: AIX® and Linux™.
./stopManager.sh -username username -password password
./startManager.sh
Windows™
stopManager.bat -username username -password password
startManager.bat
- Restart the node agents.
- Log into the Integrated Solutions Console (http://localhost:9060/ibm/console)
on the deployment manager.
- Click .
- Select all node agents, and then click Restart.
- Choose .
- Select the Sametime® Gateway
Server cluster and click Start.
- Click . Note that if you are not connecting
to any instant messaging service over SIP, it's not necessary to start
the SIP proxy server.
- Select the SIP proxy server or servers and click Start.
- Choose .
- Select the XMPP proxy server and click Start.
Note that if you are not connecting to any instant messaging service
over XMPP, it's not necessary to start the XMPP proxy server.