Previous Topic Next topic Print topic


Using SSL with the CICS Resource Adapter

After installing and configuring the Micro Focus CICS resource adapter, including enabling SSL, you can perform further configuration to establish secure communication between the resource adapter and Enterprise Server. To do this, generate a Java keystore that includes Enterprise Server trusted certificates that can be used by CICS resource adapter programs; then import your trusted root certificate into the keystore.

Configure the RA and Enable SSL
See CICS Resource Adapter Configuration for complete instructions.
Generate a Keystore
  1. Generate a Java keystore using the keytool command provided with the JDK. For example:
    keytool -genkey -alias esServer -keyalg RSA -keystore estrustStore.jks
  2. Provide a password for the generated keystore. (Optional)
Import the Trusted Root Certificate
Here, you set the trusted root certificate to verify the certificate provided by Enterprise Server.
  1. Import the trusted root certificate into your generated Java keystore using the keytool command. For example:
    keytool -import -alias esrootcert
    -file CARootcert.pem -keystore estrustStore.jks
  2. If prompted, provide a password for the keystore.

For more information on Enterprise Server and CA certificates, see the Secure Communications (SSL) topic under Deployment. We also provide a demo CA you can use to test your SSL connections. See Using the Demonstration Certificate Authority for details.

We also recommend that you review the topics listed under Related reference below.

Previous Topic Next topic Print topic