test

Sun GlassFish Mobility Platform 1.1 Installation Guide

Configuring the Gateway Tier to Trust the Enterprise Tier

Text

    There is a two-step process to configure trust between Enterprise tier and the Gateway tier.

  1. On the Enterprise tier, export the keystore and copy it to the Gateway tier.

    1. Change to the config subdirectory in the Enterprise tier Sun GlassFish Mobility Platform installation:


      $ cd as-install/domains/domain-dir/config

    2. Export the keystore to a file:


      keytool -export
-keystore keystore.jks
-alias s1as
-file tier2_sjsas.cer
-storepass adminpass

    3. Copy the exported keystore to the config subdirectory in the Gateway tier Sun GlassFish Mobility Platform installation:


      $ cp tier2_sjsas.cer /net/tier1-hostname/as-install/domains/domain-dir/config

  2. On the Gateway tier, import the keystore from the Enterprise tier.

    1. Change to the config subdirectory in the Gateway tier Sun GlassFish Mobility Platform installation:


      $ cd as-install/domains/domain-dir/config

    2. Import the keystore that was exported from the Enterprise tier:


    $ keytool -import
-keystore cacerts.jks
-alias tier2_sjsas
-file tier2_sjsas.cer
-storepass adminpass
-trustcacerts
-noprompt

  3. Stop then restart the Enterprise Server on the Gateway tier to use the new security settings.

    1. Stop the Enterprise Server:


      $ asadmin stop-domain domain-dir

    2. Restart the Enterprise Server:


      $ asadmin start-domain domain-dir