Configuring Security Settings - EnterWorks_Process_Exchange_(EPX) - 10.5

EnterWorks EPX Administration

Product type
Software
Portfolio
Verify
Product family
EnterWorks
Product
Precisely EnterWorks > EnterWorks Process Exchange (EPX)
Version
10.5
Language
English
Product name
Precisely EnterWorks
Title
EnterWorks EPX Administration
Topic type
Administration
Configuration
First publish date
2007
ft:lastEdition
2023-07-28
ft:lastPublication
2023-09-20T03:37:01.911821

When you want to operate EPX in a secure environment, you can configure your EPX clients and servers using Java-based security encryption. This security method uses a database known as a keystore. Keystores are password protected and they consist of key and trusted certificate entries.

  • Key entries hold very sensitive cryptographic key information that is stored in a protected format to prevent unauthorized access.

  • Trusted certificate entries contain a single public key certificate belonging to another party. It is called a “trusted certificate” because the keystore owner trusts that the public key in the certificate indeed belongs to the identity identified by the “subject” (owner) of the certificate. The issuer of the certificate vouches for this, by signing the certificate.

Configuring security is normally performed during installation. If, however, the security settings were not made during installation, you can manually configure security as follows:

  1. Open the file config.properties, located in <EPX>/bin.

  2. In the file, go to the section “Security and proxy settings” and locate the settings for the server and client certificates. The settings are similar, if not identical, to the example below:

# contains the server certificate chain ssl.truststore.file=C:/Enterworks/EPX/bin/certs/server.keystore ssl.truststore.alias=tomcat ssl.truststore.password=@FILE.TRUSTSTORE.PASSWORD@

# contains the client certificate chain ssl.keystore.file=C:/Enterworks/EPX/bin/certs/client.keystore ssl.keystore.alias=tomcat ssl.keystore.password=@FILE.KEYSTORE.PASSWORD@ ssl.password.encryption=false

  1. Do one of the following:

  • Copy your trust store file and certificate keystore file to the directory already specified inconfig.properties (for example, C:/Enterworks/EPX/bin/certs/).

  • Modify the config.properties file to specify the directory or directories where the trust store file and certificate keystore file are located.

  1. Replace the password “@FILE.TRUSTSTORE.PASSWORD@” and “@FILE.KEYSTORE.PASSWORD@” with the actual password for both ssl.truststore.password and ssl.keystore.password.

  2. Save the config.properties file.

  3. Restart the service for the EPX Application Server.