0 Replies Latest reply on Jul 20, 2021 9:38 PM by Philipp Holler

    Supplier Portal Keystore Integration with Windows Keystore

    Philipp Holler New Member

      Hello,

       

      we are currently facing a security issue with our Supplier Portal and the SSL-certificate. In the standard informatica solution the tomcat connector looks like this:

       

      <Connector port="9443" protocol="org.apache.coyote.http11.Http11NioProtocol" 
      maxThreads="150" scheme="https" secure="true" SSLEnabled="true" 
      keystoreFile="XXXXX/keystore.jks" keystorePass="XXXXXX" 
      clientAuth="false" keyAlias="XXXXXX" 
      sslProtocol="TLS" URIEncoding="UTF-8"/>
      

       

      We are currently planing to move the SSL-certificate into the Windows Keystore instead of using the java-generated .jks-file.

      The connector should work looking like this:

       

      <Connector port="8443" 
        protocol="org.apache.coyote.http11.Http11NioProtocol"
        SSLEnabled="true"
        maxThreads="150" 
        scheme="https" 
        secure="true"
        keyAlias="XXXXXX"
        keystoreFile=""
        keystoreType="Windows-My"
        clientAuth="false" 
        sslProtocol="TLS"
        keepAliveTimeout="200000" />

       

      Does anyone has a similar architecture or is using the Windows Keystore?

      I would like to know if the Supplier Portal is working without any issues or if you have a other solution where the password for the keystore is not saved unencrypted.

      Thank you in advance!