Configuring TLS Encryption for Siebel Application Interface

This topic describes how to configure the Siebel Application Interface to use TLS encryption and, optionally, authentication for communications with Siebel Servers. Configuring TLS communications between Siebel Servers and the Web server also requires that you configure a Siebel Enterprise or Siebel Server to use TLS. For information on this task, see Configuring TLS Encryption for Siebel Enterprise or Siebel Server.

This task is a step in Process of Configuring Secure Communications.

Note: The information in this topic describes how to implement TLS for communications between Siebel Application Interface and Siebel Servers. For information on implementing TLS for communications between Siebel Web Client and Siebel Application Interface, see About the Siebel Web Client and Using HTTPS.

You must include TLS-related parameters in the applicationinterface.properties file if you are using TLS to encrypt communications between the Web server and the Siebel Server.

To configure TLS encryption for Siebel Application Interface

1. Ensure that the following parameters are set in the applicationinterface.properties file by the Siebel installer:

   • TrustStoreName

   • KeyStoreName

   • TrustStorePassword

   • TrustStoreType=JKS

   • KeystoreType=JKS

   KeyStore and TrustStore with valid certificate, are a prerequisite for the application interface component installer to pick and use.

   The applicationinterface.properties file is located on the Siebel Application Interface in the applicationcontainer_external\webapps folder.

2. In addition to these parameters, set the following parameter in the setenv.bat file located on the Siebel Application Interface in the applicationcontainer_external\bin folder:

   set CATALINA_OPTS=-Djavax.net.ssl.keyStoreAlias=<<keystore alias name>>