Configuring secure sockets

To provide secure communication between the Change Management Server (CM Server) and the ClearCase Remote Client (CCRC), or between CM Server and ClearQuest Web, you can configure CM Server to support the IBM® Secure Sockets Layer (IBM SSL) protocol.

The current version of CM Server does not support Open SSL. If you are upgrading a product that uses CM Server and you want to use previously created Open SSL certificates, see Converting Open SSL certificates to IBM SSL. If you perform the conversion, you do not need to perform any of the next steps.

The following variable is used in path names in this topic:
RATIONAL_COMMON
Directory where Rational common files are installed

To create new IBM SSL certificates:

  1. Uncomment the statement Include conf/ssl.conf in the file %RATIONAL_COMMON%\IHS\conf\httpd.conf.
  2. If you have not created the files %RATIONAL_COMMON%\IHS\key.kbd and %RATIONAL_COMMON%\IHS\key.sth, do so by using the IBM HTTP Server Key Management utility. For more information, see Creating HTTP server keys and Help for IKeyMan.
  3. Create the IBM SSL certificate. See Creating a self-signed certificate for the HTTP server. For information about creating a new certificate request to send to the certificate authority, see the Help for IKeyMan.
  4. To force the processing of non-SSL requests as SSL requests, see Forcing an SSL connection with CM Server.

Feedback