Access Service Manager on a web client through an F5 HWLB in Full SSL mode

This section describes how to access Service Manager on a web client through an F5 HWLB in Full SSL mode.

Prerequisites

Before you begin this process, verify that the following conditions are true:

Step 1: Modify the sm.ini file

Configure the following parameters in the sm.ini file:

ssl:1
ssl_reqClientAuth:2
keystoreFile:server.keystore
keystorePass:serverkeystore
ssl_trustedClientsJKS:trustedclients.keystore
ssl_trustedClientsPwd:trustedclients
truststoreFile:cacerts
truststorePass:changeit
external_lb
sslConnector:1

Step 2: Modify the web.xml file

On the Service Manager web tier, locate the web.xml file, and then configure the following parameters:

<init-param>
<param-name>ssl</param-name>
<param-value>true</param-value>
</init-param> 
<init-param>
<param-name>cacerts</param-name>
<param-value>/WEB-INF/cacerts</param-value>
</init-param>
<init-param>
<param-name>keystore</param-name>
<param-value>/WEB-INF/<webtier FQDN>.keystore</param-value>
</init-param>
<init-param>
<param-name>keystorePassword</param-name>
<param-value>clientkeystore</param-value>
</init-param>
<init-param>
<param-name>externalLB</param-name>
<param-value>true</param-value>
</init-param>