Token Proxy Service Listener Certificate

Note:

The Token Proxy Service Listener Certificate is available for both Tomcat and WebLogic.

The Cert Manager can also assist importing required certificates into root certificate files for the Listener record configured on a Token Proxy system.

It is possible to import the selected certificates public key to a keystore it creates with the required file name, and set the password in the TPS wallet, which means this step does not need to be completed with the existing OPIConfigX utility.

1. After login, select the option Configure the certificates for the TokenProxy Exchange Service HTTPS Listener.

   
   
   
2. The Cert Manager allows the supported certificate to be imported by browsing or using drag and drop. Browse to the location of the certificate you want to import from add icon ( ) available on the top right of the page or you can also drag the certificate to the Cert Manager page (be attentive of the File Extension filter in the file browser window).

   
   
   
3. You will be prompted to supply the password for the certificate you have selected. Enter the password and select Decrypt.

   
   
   
4. If the entered password is correct, then you should see a file read successfully message.

   
   
   

5. The Cert Manager will display the certificate chains from the certificate provided.

6. Select from the Active Certificate Chain drop-down list, the required alias if more than one is available.

7. This will display the associated Certificate Expiry Date and Status.

   
   
   

8. Click Next to choose a password for the keystore.

9. Provide and confirm the password that meets the minimum requirements, for the keystore that will store listener certificate.

   
   
   

10. Click Finish to configure the listener certificate.

    The Token Proxy service listener PFX file has been updated with OPI_Listener.pfx in directory: \TokenProxy\TokenProxyService\key\.

    
    
    

11. Click OK to return to the option selection screen.