× The internal search function is temporarily non-functional. The current search engine is no longer viable and we are researching alternatives.
As a stop gap measure, we are using Google's custom search engine service.
If you know of an easy to use, open source, search engine ... please contact support@midrange.com.


  1.  Home
  2. RPG400-L
  3. March 2013

Need to secure WSDL2RPG Client using SSL

I've successfully imported our wc certificate using keytool notes below, but still getting an HTTPS error.
Does anyone know what else needs to be done for secure WDDS2RPG client using SSL?

HTTPTransportException: HTTPS transport error. GSKit Error is 202 - Key database
file was not found.


-----Original Message-----
From: Steinmetz, Paul
Sent: Wednesday, March 06, 2013 10:25 PM
To: 'RPG programming on the IBM i (AS/400 and iSeries)'
Subject: Need to secure WSDL2RPG Client using SSL

We need to secure an WSDL2RPG client app, using SSL. Would like to use DCM, since it currently manages all my SSL, but finding that may not be an option.
May have to use keytool / keystore method below.
We currently use one wild card cert for all servers, cert is already installed in DCM for server use.

, Usage notes
If you are getting exceptions when you specify a URI that uses HTTP with the SSL protocol (HTTPS), you may need to import the security certificate into the Java runtime environment (JRE) keystore. You will first have to obtain the certificate and save it to a file in the integrated file system. This typically is done by using the WSDL URI (e.g. https://lp02ut18:9080/web/services/ConvertTemp?wsdl) in your web browser and using the browser to view and save the certificate information. The general steps to get the certificate are as follows:
1. Bring up a browser and use the WSDL URI as the URL and press enter.
2. You should get a security alert. At this point view the certificate.
3. Go to tab or click on link that will allow you to view the certificate details.
4. Export the file (for Internet Explorer ensure format is DER encoded binary X.509 (.CER)) to your system.
Once the certificate is stored on your system, you will now need to import the certificate using the keytool command into the keystore for the JRE that is being used by the wsdl2ws.sh tool.
For IBM i 6.1 and previous releases, use the following command from within the QShell shell interpreter:

/qopensys/QIBM/ProdData/JavaVM/jdk50/32bit/jre/bin/keytool
-import -trustcacerts -storepass changeit -file <certificate_file> -keystore /qopensys/QIBM/ProdData/JavaVM/jdk50/32bit/jre/lib/security/cacerts

For IBM i 7.1, use the following command from within the QShell shell interpreter:

/qopensys/QIBM/ProdData/JavaVM/jdk60/32bit/jre/bin/keytool
-import -trustcacerts -storepass changeit -file <certificate_file> -keystore /qopensys/QIBM/ProdData/JavaVM/jdk60/32bit/jre/lib/security/cacerts

Thanks

Paul Steinmetz
IBM i Systems Administrator

Pencor Services, Inc.
471 Delaware Ave
Palmerton Pa 18071

610-826-9117 work
610-826-9188 fax
610-349-0913 cell
610-377-6012 home

psteinmetz@xxxxxxxxxx
http://www.pencor.com/

As an Amazon Associate we earn from qualifying purchases.

This thread ...
Follow On AppleNews
Return to Archive home page | Return to MIDRANGE.COM home page

This mailing list archive is Copyright 1997-2024 by midrange.com and David Gibbs as a compilation work. Use of the archive is restricted to research of a business or technical nature. Any other uses are prohibited. Full details are available on our policy page. If you have questions about this, please contact [javascript protected email address].

Operating expenses for this site are earned using the Amazon Associate program and Google Adsense.