WebSphere Application Server & Liberty

WebSphere Application Server & Liberty

Join this online group to communicate across IBM product users and experts by sharing advice and best practices with peers and staying up to date regarding product enhancements.

 View Only

  • 1.  How to script Transport Channel -> SSL Configuration ?

    Posted Mon April 15, 2024 10:42 AM
    Edited by Piper Wilson Mon April 15, 2024 11:39 AM

    Hi all,

    I'm trying to script importing and using a self signed SSL certificate.   I've managed to script the process with wsadmin.bat (using powershell / ansible) - all apart from one step.

    I need to set the following using wsadmin.bat  (or if it can be done editing an XML file or some other method I'm happy to hear any solution):

    Web Container Transports Chains -> <my chain name> -> SSL inbound channel (SSL_4) -> Specific to this endpoint -> SSL Configuration

    Change this from NodeDefaultSSLSettings to 'DefaultSSLSettings' (that I created):



    Thanks in advance!



  • 2.  RE: How to script Transport Channel -> SSL Configuration ?

    Posted Tue April 16, 2024 06:38 AM

    Check this article to get commands used

    Generating WebSphere administrative commands to assist in developing Jython scripts

    If you need to import certificates on Websphere, you can check this:

    https://github.com/ebasso/ansible-ibm-websphere/tree/master/roles/was-dmgr-import-tls-cert



    ------------------------------
    ENIO RUBENS BASSO
    ------------------------------

    Original Message


  • 3.  RE: How to script Transport Channel -> SSL Configuration ?

    Posted Wed April 17, 2024 04:19 AM

    The first link you wrote there for command assitance is for Rational Application Developer which I believe is a paid SW. You can do the same in WebSPhere Application Console :

     

    You Enable the command assistance notifications and the Log command assitance commands in the 'System Administration -> Console Preferences'

    The Log option writes the log file in the dmgr or server (if it is standalone) log directory, file name is commandAssistanceJythonCommands_youruseridhere.log

     

    Then you do your testes in the admin console and check the log file later or check the notifications while doing things in the admin console.

     

    # [17-04-2024 8:46:04:755 WEST] Middleware servers > server1 > Web container > Web container transport chains > WCInboundAdmin > Web container inbound channel (WCC_1) > Custom properties

    AdminTask.listChains('(cells/Cell_prd/nodes/Node_prd_02/servers/server1|server.xml#TransportChannelService_1440713774490)', '[-acceptorFilter WebContainerInboundChannel]')

     

    # [17-04-2024 8:46:24:299 WEST] Middleware servers > server1 > Web container > Web container transport chains > WCInboundDefaultSecure

    AdminTask.listSSLRepertoires('SSL_2(cells/Cell_prd/nodes/Node_prd_02/servers/server1|server.xml#SSLInboundChannel_1440713774491)')

     

     

     

     

     

    I did not try to change it, because I do not have a test system here, try it on your own.

     

    João Pedro Alexandre

    Senior Lead, Infrastructure Specialist

    Kyndryl Consult 

     

    signature_372796453

    Unless stated otherwise above:
    KNDRL SERVICES PORTUGAL, S.A.
    Sociedade Anónima com o Capital Social de € 11.000.000
    Registada na Conservatória do Registo Comercial de Lisboa, sob o número único fiscal e de matrícula  516360558
    Edifício "Office Oriente" - Rua do Mar da China, Nº 3, Parque das Nações, 1990-138 LISBOA



    Original Message


Related Content