The Certificates provided as part of the DomainZipFile.zip file
must consider the CN value in the certificate.
HostName Verification is always active when you elect to use SSL,
so you need to factor in the following when the Certificate is used
in the Script Package:
For Client Certificates (Public and Private/Key), you have no
way of knowing the exact host that the WSRR Server or WSRR Dmgr that
runs the script will be on. Therefore, the CN value must be generic
enough to run on any potential client host in the IBM® Workload
Deployer environment;
for example, *clientname*.yourcompany.com.
The certificates for the DataPower® machines
are in individual directories in the DomainZipFile.zip file;
for example:
The CN value for the certificate (the final certificate in the
chain for the DataPower host)
must be valid for that host name; for example, dp1.yourcompany.com or *dp*.yourcompany.com.