Replace the self-signed certificate with a certificate
that belongs to your company.
Procedure
- Configure an Apache Tomcat security certificate. (Not supported
on IBM® i.)
In the file,
JazzInstallDir/server/tomcat/conf/server.xml,
Apache Tomcat is configured to read the server certificate from
JazzInstallDir/server/tomcat/ibm-team-ssl.keystore.
The default keystore password is set to "ibm-team". This keystore
includes a self-signed certificate identifying the server as "localhost".
Note: To
improve security, change the default keystore password.
The IBM JRE
included with Jazz™ Team Server includes
an IBM tool that is useful for managing keys on
the server. The tool iKeyman is located in the directory JazzInstallDir/server/jre/bin/ (ikeyman.exe
on Windows®).
The iKeyman tool can help
you create your own self-signed certificate identifying the host by
its network name. Alternatively, you can request a certificate signed
by a trusted certificate authority (CA). A self-signed certificate
requires acceptance by the Rational Team Concert client or web browser.
For
more information see, Secure Sockets Layer Introduction and iKeyman User's
Guide.
- Configure a WebSphere® Application Server
security certificate.
For more information see,