About this task
Configure the integration node listener to use SSL by completing the following steps:
- Optional: Display the settings of the integration node listener by using the mqsireportproperties command:
mqsireportproperties integrationNodeName
-b httplistener -o HTTPSConnector -r
- Configure the password for the keystore by using the mqsisetdbparms command:
mqsisetdbparms integrationNodeName
-n brokerKeystore::password -u ignore -p password
- Configure the password for the truststore by using the mqsisetdbparms command:
mqsisetdbparms integrationNodeName
-n brokerTruststore::password -u ignore -p password
- Configure the keystore by using the mqsichangeproperties command:
mqsichangeproperties integrationNodeName
-b httplistener -o HTTPSConnector
-n keystoreFile -v absolute_Path_To_Keystore_File
- Configure the truststore by using the mqsichangeproperties command:
mqsichangeproperties integrationNodeName
-b httplistener -o HTTPSConnector
-n truststoreFile -v absolute_Path_To_Truststore_File
- Specify the type of the keystore by using the mqsichangeproperties command:
mqsichangeproperties integrationNodeName
-b httplistener -o HTTPSConnector
-n keystoreType -v keystore_Type
- Specify the type of the truststore by using the mqsichangeproperties command:
mqsichangeproperties integrationNodeName
-b httplistener -o HTTPSConnector
-n truststoreType -v truststore_Type
- Associate the keystore password that you specified for the keystore at step 2 with the keystore by using the mqsichangeproperties command:
mqsichangeproperties integrationNodeName
-b httplistener -o HTTPSConnector
-n keystorePass -v brokerKeystore::password
- Associate the truststore password that you specified for the truststore at step 3 with the truststore by using the mqsichangeproperties command:
mqsichangeproperties integrationNodeName
-b httplistener -o HTTPSConnector
-n truststorePass -v brokerTruststore::password
- Specify the SSL protocol that is to be used by using the mqsichangeproperties command.
mqsichangeproperties integrationNodeName
-b httplistener -o HTTPSConnector
-n sslProtocol -v sslProtocol
- Optional: Specify the alias that the keystore server certificate is to use:
mqsichangeproperties integrationNodeName
-b httplistener -o HTTPSConnector
-n keyAlias -v certificate_KeyAlias
- Optional: Set clientAuth to true if you need to enable mutual authentication.
mqsichangeproperties integrationNodeName
-b httplistener -o HTTPSConnector
-n clientAuth -v true
- Verify that your integration node listener settings are correctly configured.
mqsireportproperties integrationNodeName
-b httplistener -o HTTPSConnector -r