Replace the self-signed certificate with a certificate
that belongs to your company.
Procedure
- Configure an Apache Tomcat security certificate.
In
the file,
JazzInstallDir/server/tomcat/conf/server.xml,
Apache Tomcat is configured to read the server's certificate from
JazzInstallDir/server/tomcat/ibm-team-ssl.keystore.
The default keystore password is set to, ibm-team. This keystore includes
a self-signed certificate identifying the server as "localhost".
Note: To
improve security, change the default keystore password.
The IBM® JRE
included with Jazz™ Team Server includes
an IBM tool that is useful for managing keys on
the server. The tool iKeyman is located in the directory JazzInstallDir/server/jre/bin/ (ikeyman.exe
on Windows®).
The ikeyman tool can help
you create your own self-signed certificate identifying the host by
its proper network name or you can request a certificate signed by
a trusted certificate authority (CA). A self-signed certificate will
require acceptance by the Team Concert client or web browser.
For
more information see, http://download.boulder.ibm.com/ibmdl/pub/software/dw/jdk/security/50/GSK7c_SSL_IKM_Guide.pdf .
- Configure a WebSphere® Application Server
security certificate.
For more information on see,