Documentum xCP 2.3 SSL Connection

Hi Ibrahim,

With respect to CTS below are the instructions on how to configure CTS for SSL :

Configuring CTS Server to run in SSL Mode:

CTS Server and CTS Web Services can be configured to run in SSL mode (that is, https instead of http).

This is enabled at the application server level, where each application server has their own procedure to make it handle https. However, CTS must be updated to accept the new SSL port.

For any real time requests, the CTS Webservice server communicates to the CTS Server through http. CTS server bundles the Jetty application server with it. To configure this communication in SSL (https) mode, the following procedures have been provided.

To configure CTS WebServer to run in SSL mode, consult publicly available reference material, for example, http://i-proving.ca/space/Technologies/JBoss/Configuring+JBoss+SSL or http://it.amid.com/2009/01/27/ssl-from-java-client/.

To configure CTS Server to run in SSL mode:

1. Jetty's status can be verified as follows:

1. Start the CTS server.
2. Run the following query against the repository to get the Jetty running URL:

Select websrv_url, hostname from cts_instance_info

3. Try the attribute value of websrv_url from a browser to see if it is running.

2. Configure Jetty to run in SSL mode.

The following site may be helpful: http://docs.codehaus.org/display/JETTY/How+to+configure+SSL

1. The Jetty config file can be found on the CTS server under \CTS\Jetty\.
2. To verify the new SSL URL, run the following URL from the CTS server browser:

http://<localhost>:<ssl_port>/cts/

3. If the URL is successful, update the cts_instance_info object in the repository to set the new URL to websrv_url attribute by running the following query:

DQL> Update cts_instance_info object set websrv_url=<new_ssl_url> where hostname=<ctsserver_hostname_here>

4. Restart the CTS server.
5. Restart CTS Webserver service.

Thanks,
Kamran.