Configuring Security Settings - EnterWorks_Process_Exchange_(EPX) - 10.6

EnterWorks EPX Administration

Product type
Product family
Precisely EnterWorks > EnterWorks Process Exchange (EPX)
Product name
Precisely EnterWorks
EnterWorks EPX Administration
Topic type
First publish date

When you want to operate EPX in a secure environment, you can configure your EPX clients and servers using Java-based security encryption. This security method uses a database known as a keystore. Keystores are password protected and they consist of key and trusted certificate entries.

  • Key entries hold very sensitive cryptographic key information that is stored in a protected format to prevent unauthorized access.

  • Trusted certificate entries contain a single public key certificate belonging to another party. It is called a “trusted certificate” because the keystore owner trusts that the public key in the certificate indeed belongs to the identity identified by the “subject” (owner) of the certificate. The issuer of the certificate vouches for this, by signing the certificate.

Configuring security is normally performed during installation. If, however, the security settings were not made during installation, you can manually configure security as follows:

  1. Open the file, located in <EPX>/bin.

  2. In the file, go to the section “Security and proxy settings” and locate the settings for the server and client certificates. The settings are similar, if not identical, to the example below:

# contains the server certificate chain ssl.truststore.file=C:/Enterworks/EPX/bin/certs/server.keystore ssl.truststore.alias=tomcat ssl.truststore.password=@FILE.TRUSTSTORE.PASSWORD@

# contains the client certificate chain ssl.keystore.file=C:/Enterworks/EPX/bin/certs/client.keystore ssl.keystore.alias=tomcat ssl.keystore.password=@FILE.KEYSTORE.PASSWORD@ ssl.password.encryption=false

  1. Do one of the following:

  • Copy your trust store file and certificate keystore file to the directory already specified (for example, C:/Enterworks/EPX/bin/certs/).

  • Modify the file to specify the directory or directories where the trust store file and certificate keystore file are located.

  1. Replace the password “@FILE.TRUSTSTORE.PASSWORD@” and “@FILE.KEYSTORE.PASSWORD@” with the actual password for both ssl.truststore.password and ssl.keystore.password.

  2. Save the file.

  3. Restart the service for the EPX Application Server.