Go to primary content
Agile Product Lifecycle Management Security Guide
Release 9.3.5
E52156-05
  Go To Table Of Contents
Contents
Previous
Previous 		 Next
Next		  

B Checklist for Configuring Web Services Security

The checklists in this section list the main tasks needed to configure Web Services security. It includes configuration steps for SSL setup described in Chapter 4, "Performing a Secure Agile PLM Installation" and WSS setup that is described in Chapter 7, "Enabling Security for Web Services".

B.1 A9 and File Manager Web Services Setup Checklist

Table B-1 Checklist for A9 and FM Web Services Security Setup Tasks

Task Complete? Comments

Generate Agile Server SSL keystore and SSL key.

Generate Certificate Signing Request to CA and import CA certificate back to Agile server SSL keystore.

Create Agile Server truststore and import CA certificate chain.

Enable SSL port in WebLogic console.

Configure keystore and truststore in WebLogic console.

Select SSL key as SSL Private key in Weblogic console.

Change Java Client Web Server URL to HTTPS and change Port to SSL.

Generate File Manager SSL keystore and SSL key.

Generate Certificate Signing Request to CA and import CA certificate back to File Manager SSL keystore.

Export Agile server SSL certificate and import it to File Manager SSL keystore.

Export File Manager SSL certificate and import it to Agile SSL truststore.

Change Server.xml to enable SSL.

Change Server.conf to use HTTPs protocol and SSL ports.

Extend WebLogic domain.

Enable security using wssconfigurator.

Generate Agile Server SAML signature key Certificate signing request using wssconfigurator and send it to CA.

Import CA signed certificate back to OWSM keystore.

Generate File Manager SAML key.

Generate Certificate Signing Request to CA.

Import Agile Server SAML CA signed certificate.

Import CA certificate chain (in three layers) to File Manager SAML keystore.

Import File Manager SAML Signature certificate to Agile Server keystore.

Create Trust Issuer using wssconfigurator.


B.2 Distributed File Manager Configuration Checklist

Table B-2 Checklist for DFM Configuration Tasks

Task Complete? Comments

Generate DFM Keystore and SSL key.

Generate Certificate Signing Request to CA and import CA certificate back to DFMs SSL keystore.

Export DFMs SSL certificate and import to Agile Server truststore and FM SSL keystore.

Change DFM server.conf with appropriate URLs.

Import Agile SSL certificate and FM SSL certificate to DFMs SSL keystore.

Import all FM SAML keys into DFM keystore (if SAML key is different in all FMs).

Import DFMs SSL certificates into Agile server truststore and FM keystore.

Create Trust Issuer if different SAML key is used.

Update Issuer Name in server.conf.


B.3 Autovue Configuration Checklist

Table B-3 Checklist for Autovue Configuration Tasks

Task Complete? Comments

Import all SSL certs (FM, DFM, SSL) into Autovue/jre/security/cacerts.


  Previous
Previous 		 Next
Next
  Go To Table Of Contents
Contents