Configuring TLS Encryption for Siebel Application Interface

This topic describes how to configure the Siebel Application Interface to use TLS encryption and, optionally, authentication for communications with Siebel Servers. Configuring TLS communications between Siebel Servers and the Web server also requires that you configure a Siebel Enterprise or Siebel Server to use TLS. For information on this task, see "Configuring TLS Encryption for Siebel Enterprise or Siebel Server".

This task is a step in "Process of Configuring Secure Communications".

Note: The information in this topic describes how to implement TLS for communications between Siebel Application Interface and Siebel Servers. For information on implementing TLS for communications between Siebel Web Client and Siebel Application Interface, see "About the Siebel Web Client and Using HTTPS".

You must include TLS-related parameters in the applicationinterface.properties file if you are using TLS to encrypt communications between the Web server and the Siebel Server. The following parameters must be set in the applicationinterface.properties file by the Siebel installer:

To configure TLS encryption for Siebel Application Interface 

1. Ensure that the following parameters are set in the applicationinterface.properties file by the Siebel installer:

   • TrustStoreName

   • KeyStoreName

   • TrustStorePassword

   • TrustStoreType=JKS

   • KeystoreType=JKS

   KeyStore and TrustStore with valid certificate, are a prerequisite for the application interface component installer to pick and use.

2. In addition to these parameters, set the following parameter in the setenv.bat file under $build$\swsm\applicationcontainer\bin:

   set CATALINA_OPTS=-Djavax.net.ssl.keyStoreAlias=<<keystore alias name>>