Create a Keystore for a Secure Connection to a Web Application Service
Create a Keystore for a Secure Connection to a Web Application Service
You can secure the connection between the Informatica domain and a web application service, such as the Analyst service. Informatica uses the SSL/TLS protocol to encrypt network traffic. To secure the connection, you must create the required files.
Before you can secure the connection to a web application service, verify that the following requirements are met:
You created a certificate signing request (CSR) and private key.
You can use keytool or OpenSSL to create the CSR and private key.
Note that RSA encryption requires more than 512 bits.
You have a signed SSL certificate.
The certificate can be self-signed or CA signed. Informatica recommends a CA signed certificate.
You imported the certificate into a keystore in JKS format.
A keystore must contain only one certificate. If you use a unique certificate for each web application service, create a separate keystore for each certificate. Alternatively, you can use a shared certificate and keystore.
If you use the installer-generated SSL certificate for the Administrator tool, you do not need to import the certificate into a keystore in JKS format.
The keystore is in an accessible directory.
The keystore must be in a directory that is accessible to the Administrator tool.