Agnostic Guides
...
Link Enterprise SCRUD Web Serv...
HTTPS Setup (JKS/PEM)
4 min
pem/cer to enable link enterprise to use the following formats you must add to the ini file cert type = pem under \[general preferences] do not use encrypted private key using a generated private key file in pkcs8 format for the server and place in the config folder of the link enterprise instance using openssl and your private key this is created by openssl pkcs8 topk8 inform pem in your private key pem outform pem nocrypt out your private key pkcs8 pem generating the public certificate for the server place in the config folder of the link enterprise instance openssl req new x509 key your private key pem out your public cer days 3650 update config properties and remove the default values for content cer file and content pem file with the ones generaged above save the file and restart the service content cer file=your public cer content pem file=your private key pkcs8 pem jks link enterprise supports utilizing the jks format for it's web services api if you are not familiar with java key stores you can learn more about them here in most cases inside a keystore a private key is accompanied by the corresponding public key certificate to view the certificates currently installed in your link enterprise middleware for web services you can view the jks file using a key store viewer such as https //keystore explorer org/ https //keystore explorer org/ once downloaded you can open the "keystore jks" file using the password !dflow! to open the jks file the jks file is located at c \\\<link enterprise installation directory>\config\certificates\keystore jks for information on trusted certificates and importing them you can visit the following link https //keystore explorer org/doc/5 4/trustedcertificates html https //keystore explorer org/doc/5 4/trustedcertificates html for information on using a generated key pair certificate you can visit the following link http //keystore explorer org/doc/5 4/keypairs html#generate a key pair http //keystore explorer org/doc/5 4/keypairs html#generate a key pair alternatively you can utilize pem and cer files for encrypting the link enterprise web service upon any changes of the jks the service must be restarted