In order to enable secure communications using the Secure Sockets Layer (SSL) protocol you need to obtain root certificates and server certificates from a certificate authority (CA). A CA root certificate proves that the particular CA issued a particular server certificate. CA root certificates are publicly available. The root certificate used in this deployment is a self-signed certificate issued by OpenSSL for testing purposes only; it is named ca.cer. You can obtain a root certificate from any commercial certificate issuer such as VeriSign, Thawte, Entrust, or GoDaddy.
The server certificates are requested from, and issued by, OpenSSL within each procedure. You should know how to request server certificates from your CA of choice before beginning this deployment. The following identity provider sections are related to requesting, installing, and importing root and server certificates.
To Import a Root Certificate and a Server Certificate to Directory Server 1
To Import a Root Certificate and a Server Certificate to Directory Server 2
To Import the Root Certificate to Directory Server Load Balancer 1
To Request a Certificate for OpenSSO Enterprise Load Balancer 2
To Install the Certificate Authority Root Certificate to OpenSSO Enterprise Load Balancer 2
To Install the Server Certificate to OpenSSO Enterprise Load Balancer 2
To Install a Root Certificate and a Server Certificate on Directory Server 1
The following service provider sections are related to requesting, installing, and importing root and server certificates.
To Install a Root Certificate and a Server Certificate on Directory Server 1
To Install a Root Certificate and a Server Certificate on Directory Server 2
To Import the Root Certificate to the User Data Load Balancer
To Request a Certificate for OpenSSO Enterprise Load Balancer 2
To Install a CA Root Certificate to OpenSSO Enterprise Load Balancer 2
To Install the Server Certificate to OpenSSO Enterprise Load Balancer 2
To Import a Certificate Authority Root Certificate to Protected Resource 1
To Import a Certificate Authority Root Certificate to Protected Resource 1