keystore file. This keystore contains a certificate which has a CN of ‘localhost’ with the Root of Serena Sample CA-2. This file is located in the $Tomcat\ conf directory.
... Dimensions CM with SSL enabled on your ... ... keystore contains a certificate which has a ... ... $Tomcat\ conf directory. ... localhost) Sample Certificate , sample- ... with your own certificate for the Dimensions ... ... self-signed certificate or use a signed certificate from a Certificate ... ... use a signed certificate from a Certificate ... ... . For Dimensions SSL only and using a signed certificate from a Certificate ... ... of a signed certificate (pfx or ... 2. For Dimensions SSL with SBM SSO Server SSL enabled and using a signed certificate from a Certificate Authority (CA) for the Dimensions CM Server.
The section in the Administration guide on how to setup Tomcat to use SSL simply points to the online Tomcat documentation. Here is a quick guide on how to generate a self-signed certificate and how to setup Tomcat to use it.
When attempting to fire Dimensions CM ALF events at SBM in an SSL environment the following message was visible in the SDP trace: certificate verify failed; self signed certificate in certificate chain What causes this error?
A Dimensions CM server was successfully configured to use SDP over SSL with a self-signed certificate using the instructions in the System Administration Guide. However when item operations were attempted using the Web Client with the Web Client Tools installed the following errors occurred:
/usr/local/et/openldap/ The cacert.pem file noted above needs to contain the LDAP Server's client certificate and it's chain of trust in a pem format. 3. The LDAP_BIND_USER will need to be registered in the $DM_ROOT\cm\dfs\registry.dat file with the usage of the dmpasswd command similar to the following:
4. This step will configure LDAP to run over SSL . User will need to open slapd.conf file on Linux (default location is /etc/openldap/slapd.conf) and set up the following parameters: TLSCertPath /etc/openldap
The error is caused because the Dimensions server doesn't trust the certificate used when configuring the Web Tools to use HTTPS. One way to resolve this is open the relevant page in a browser, e.g. https://server:8443, and use the browser functionality to check what certificate is used and export it to a file.
