User guide
Chapter 14: How to Prepare PKI Environment for Web Services (SOAP)
14-2
Configuring a Certificate Environment on the Server
System
This section explains the following aspects of configuring a certificate environment on the server
system:
• Using an Interstage Certificate Environment
• Relations between Certificate Environment and Application Operation
Using an Interstage Certificate Environment
This section explains how to configure and use an Interstage certificate environment:
1. Create a private key and obtaining a certificate
Refer to Chapter 7 Setting and Use of the Interstage Certificate Environment for details.
2. Register the certificate and CRL
Refer to Chapter 7 Setting and Use of the Interstage Certificate Environment for details.
3. Create an SSL definition
Create an SSL definition using the screen on the Interstage Management Console as follows:
[System] > [Security] > [SSL] > [Create a new SSL Configuration]
4. Specify the SSL definition
Specify the name of the SSL definition created in step 3 as a property value in the following
property file:
%IS_HOME%\F3FMsoap\etc\config.properties
/opt/FJSVsoap/etc/config.properties
Table 14-1 Interstage Certificate Environment Properties
Property name Value
com.fujitsu.interstage.soap
x.sslname
If SSL encrypted communication, SOAP digital signature addition, or
XML decryption is to be performed, specify the name of the SSL
definition to be used.
The site certificate can also be changed using Interstage SOAP service
JavaAPI. For details, refer to "Selecting a Certificate Used for Client
Authentication" in the "SOAP Service User's Guide."
com.fujitsu.interstage.soap
x.websec
If SOAP digital signature addition or XML decryption is to be performed
using a different SSL definition name from that used for SSL encrypted
communication, specify the name of the SSL definition to be used.