Import Client Certificate

This procedure to import the client certificate is performed on each AppServer.
  1. Access the DSR API GW Admin console using https://<Admin-Server-XMI-IP>:9002/console.
  2. Login using the admin account created when configuring the API GW.
    The default username is weblogic.
  3. Navigate to Environment, and then Servers, and then AdminServer or AppServerx, and then Configuration, and then KeyStore.
  4. Note the trust store file path.
  5. SSH to the corresponding server and browse to the trust store file path.
  6. Copy the client certificate(.cer file) to import to the current directory.
  7. Execute this command to import the certificate to the trust store (trust store passphrase should be entered):
    keytool -import -alias <any-alias-name-for-cert> -file <certificate-file> -keystore <trust-store-name>
  8. Restart the corresponding server.
  9. Access the DSR API GW Admin console using https://<Admin-Server-XMI-IP>:9002/console.
  10. Login using the admin account created when configuring the API GW.
    The default username is weblogic.
  11. Navigate to Environment, and then Servers, and then AdminServer or AppServerx, and then Configuration, and then SSL.
  12. Click Advanced.
  13. Click Lock and Edit.
  14. Change Two Way Client Cert Behavior to Client Certs Requested And Enforced.
  15. Click Save and Active Changes.