In the HPInstallDir/server/tomcat/conf/server.xml file Apache Tomcat is configured to read the server certificate ibm-team from the HPInstallDir/server/tomcat/ibm-team-ssl.keystore file. The default keystore password is set to ibm-team. The ibm-team certificate identifies the server as localhost.
To improve security, you delete the ibm_team certificate and generate a new certificate. When you generate the new certificate, you set values that are based on your company information. These values include the fully qualified domain name of the Tomcat server that you are deploying the adapter to.
The IBM® JRE that is included with the adapter includes an IBM tool that you can use to manage keystores and certificates on the server. The keytool program is in the HPInstallDir/server/jre/bin/ directory. You can use the keytool program to replace the provided certificate on the Apache Tomcat application server.
For more information about the keytool program, see http://download.oracle.com/javase/6/docs/technotes/tools/windows/keytool.html.
Alternatively, you can request a certificate that is signed by a trusted certificate authority (CA). A self-signed certificate requires acceptance by the Rational Team Concert™ client or web browser.