Revision as of 15:34, October 22, 2014 by Alison.obrien (talk | contribs)
Jump to: navigation, search

Secure Transport Configuration

This section describes how to configure the Transport Layer Security (TLS) for the Genesys Interaction Recording solution.

Server Side Configuration

The following components must configure secure transports for HTTP.

Configuring TLS for Web Services

  1. Enable SSL on Jetty.
    • Edit the /opt/jetty/start.ini file and uncomment the etc/jetty-ssl.xml line.
  2. Edit the /opt/jetty/etc/keystore file, and ensure that the keystore password is set to storepwd.
  3. Acquire the certificate and private keys.Will user know how to aquire the certificate and keys?
  4. To load a certificate and private keys (jetty.crt), navigate to the /opt/jetty/etc directory and run the following commands:
    keytool -keystore keystore -import -alias jetty -file jetty.crt -trustcacerts Is this more than one command?
  5. When prompted for keystore password, enter the default: storepwd
  6. Restart Web Services.

To change the certificate:

  1. Remove the existing certificate using the following command:
    keytool -keystore keystore -delete -alias jetty
  2. Acquire the certificate and private key in a X509 PEM file (for example, jetty.crt)
  3. Load the certificate using the following command:
    keytool -keystore keystore -import -alias jetty -file jetty.crt -trustcacerts
  4. Restart Web Services.

To change the keystore password:

  1. Execute the following command:
    keytool -keystore keystore -storepasswd
  2. Encode the new password using the following command:
    java -cp lib/jetty-http-xxx.jar:lib/jetty-util-xxx.jar org.mortbay.jetty.security.Password <your password here>


Comments or questions about this documentation? Contact us for support!