IBM Sterling Connect:Direct : Import C:D certificates on C:D WebService: Difference between revisions
(Criou a página com "If you setup Secure+ during the install you need to import certificates from C:D on C:D WebServices The following message erros can confirm this situation when you try to c...") |
No edit summary |
||
| Line 15: | Line 15: | ||
cd /home/cdadmin02/cdunix/etc | cd /home/cdadmin02/cdunix/etc | ||
cdcustrpt | ./cdcustrpt | ||
check the following | check the following in '''cd.support.rpt''' | ||
SPCLI> display all; | SPCLI> display all; | ||
| Line 23: | Line 23: | ||
Name=.Client | Name=.Client | ||
Type=R | Type=R | ||
Protocol=(TLS1.2,TLS1.3) | Protocol=('''''TLS1.2,TLS1.3''''') | ||
Override=N | Override=N | ||
SecurityMode=DefaultToLN | SecurityMode=DefaultToLN | ||
AuthTimeout=120 | AuthTimeout=120 | ||
KeyCertLabel=CDInternal | KeyCertLabel='''CDInternal''' | ||
ClientAuth=Y | ClientAuth=Y | ||
CipherSuites=(TLS_AES_256_GCM_SHA384,TLS_AES_128_GCM_SHA256,TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384,TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256) | CipherSuites=(TLS_AES_256_GCM_SHA384,TLS_AES_128_GCM_SHA256,TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384,TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256) | ||
= Procedure = | = Procedure = | ||
cd /home/cdadmin02/cdunix/jre/ibm-java-x86_64-80/jre/bin/ | |||
./ikeycmd -cert -list -db "/home/cdadmin02/cdunix/ndm/secure+/certificates/cdkeystore.kdb" -pw changeit | |||
= Ver também = | = Ver também = | ||
Revision as of 17:01, 26 April 2023
If you setup Secure+ during the install you need to import certificates from C:D on C:D WebServices
The following message erros can confirm this situation when you try to connect to C:D on User Functions
- Error on C:D WebService
Connect:Direct server is in stop state or ipAddress/port is invalid
- Error on C:D log
STAR=20230425 19:38:58.479|CCOD=8|RECI=CSPA|RECC=CAEV|OSID=17600|TZDI=-25200|MSGI=CSPA304E|MSGT=Client connection is not secure. Message ID CSPA304E, rc=8, fdbk=0. STAR=20230425 19:38:58.481|RECI=CXIT|RECC=CAEV|OSID=17318|TZDI=-25200|MSGT=CMGR exited. Pid=17600. Exitcode=0.
You can check using command
cd /home/cdadmin02/cdunix/etc ./cdcustrpt
check the following in cd.support.rpt
SPCLI> display all; ... Name=.Client Type=R Protocol=(TLS1.2,TLS1.3) Override=N SecurityMode=DefaultToLN AuthTimeout=120 KeyCertLabel=CDInternal ClientAuth=Y CipherSuites=(TLS_AES_256_GCM_SHA384,TLS_AES_128_GCM_SHA256,TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384,TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256)
Procedure
cd /home/cdadmin02/cdunix/jre/ibm-java-x86_64-80/jre/bin/ ./ikeycmd -cert -list -db "/home/cdadmin02/cdunix/ndm/secure+/certificates/cdkeystore.kdb" -pw changeit