Add Supplier

Concepts

Suppliers represent end-point systems that are integrated with Service Manager Service Portal. Examples of Service Manager Service Portal suppliers are: provider systems, fulfillment systems, and ticketing systems.

Suppliers are associated with organizations, and the Organization Administrator manages the supplier systems for his organization.

The Organization Administrator can add new Service Manager Service Portal suppliers.

Note For Service Manager Service Portal, the supplier must be Service Manager and you can only add one Service Manager supplier.

Tasks

To add a new supplier:

  1. From the Launchpad, click the Suppliers application.
  2. In the Suppliers view, click the Add Supplier button.
  3. In the Add Supplier dialog, fill in and select the Basic Supplier Properties:
    1. Type a descriptive name in the Name field for the new supplier.
    2. Select SM as the Backend System Type, and then select Use As Default Support System.
  4. After the Backend System Type is selected, additional General, User, and Proxy fields are displayed. Fill in and select the required fields.
  5. Specify LWSSO properties:
    1. In the LWSSO domain field, type the domain of the SM supplier.
    2. In the LWSSO init string field, type the passphrase for the SM supplier.
  6. Click the Create button in the Add Supplier dialog to finish and save your changes. The new supplier and its properties are displayed.

Note If HTTPS is used for communication between Service Manager Service Portal and the new supplier, then HTTPS must be configured. See Configure SSL for a Supplier for instructions.

 

Related Topics

 

Configure SSL for a Supplier

If HTTPS is used for communication between Service Manager Service Portal and a supplier, then HTTPS must be configured.

Tip For more detailed information about configuring two-way SSL between Service Manager Service Portal and a Service Manager system, see the Service Manager Service Portal installation instructions in the Service Manager Help Center.

Configure SSL

Perform the following steps.

  1. Import the Service Manager Service Portal host’s CA-signed certificate into the supplier's keystore. The general steps to do this are:

    1. Copy the Service Manager Service Portal host’s /opt/hp/propel/security/CA.crt file to the supplier’s /tmp directory.
    2. On the supplier's system, import the CA-signed certificate:

      # keytool –importcert –file /tmp/CA.crt –alias Propel_CA
      –trustcacerts –keystore <SUPPLIER-KEYSTORE-PATH>/cacerts

      Where SUPPLIER-KEYSTORE-PATH is the location of the cacerts file on the supplier's system. Examples of cacerts file locations are:

      • SM on Windows:
        C:\Program Files (x86)\Micro Focus\ServiceManager 9.X\Server\RUN\cacerts
      • SM on Linux:
        /opt/MicroFocus/ServiceManager9.X/Server/RUN
    3. On the supplier's system, restart the supplier's services:

      • For SM:
        # service sm restart

  2. Import the supplier’s CA certificate into the Service Manager Service Portal host’s truststore. The general steps to do this are:

    1. Obtain the supplier's CA certificate, and then copy it to the Service Manager Service Portal host’s /tmp directory. For examples of obtaining a supplier's certificate, see SSL Tips. In the following step, the supplier’s CA certificate is in a CA.crt file.
    2. On the Service Manager Service Portal host, import the supplier's CA-signed certificate:

      # keytool –importcert –file /tmp/CA.crt –alias Supplier_CA
      –trustcacerts –keystore /opt/hp/propel/security/propel.truststore


      (The default password is "propel2014" for the Service Manager Service Portal truststore.)

  3. On the Service Manager Service Portal host, restart the Service Exchange (SX) services:

    # systemctl restart jetty-sx

Tip To verify that HTTPS is correctly configured between Service Manager Service Portal and the supplier, view the supplier details in the Suppliers application, and then click the Diagnostics tab. The status should indicate there are no connection issues.

SSL Tips

If you do not have an SSL certificate from the supplier's system, you can manually create a certificate. Examples of creating a supplier's SSL certificate are:

Export SSL Certificate from Supplier's Truststore

Use the following command on the supplier's system to export an SSL certificate from the supplier's truststore:

# keytool -exportcert -file <CERT-OUTPUT-FILE> -keystore
<SUPPLIER-KEYSTORE-PATH>/cacerts -alias <SUPPLIER-ALIAS>

Where:

  • CERT-OUTPUT-FILE is the output file that will contain the exported certificate.
  • SUPPLIER-KEYSTORE-PATH is the location of the cacerts file on the supplier's system.
  • SUPPLIER-ALIAS is the alias used in the supplier's truststore to identify the supplier's certificate.

Create Supplier's Host Certificate

Use the following procedure to create a supplier's host certificate:

  1. On the Service Manager Service Portal host, execute the following command:

    # openssl s_client -connect <SUPPLIER-HOST>:<PORT> > supplier.crt

  2. Edit the supplier.crt file and retain only the lines beginning with
    "-----BEGIN CERTIFICATE-----" and ending with "-----END CERTIFICATE-----",
    deleting all other lines.

You can verify that the supplier's host certificate is valid with the following command:

# keytool -printcert -file supplier.crt

The output of the keytool command should identify the certificate owner and issuer.