Enabling SPML Web Services with OIM

Enabling SPML web services is pretty trivial, but since I’m doing it in my virtual environment and taking screen shots, I thought I would add it here.

Image here

Next Step is to enable SSL communications:
Step 1 – Generate the Keys using keytool
keytool -genkey -alias serverjboss -keyalg RSA -keysize 1024 -dname “CN=localhost,OU=Identity,O=Oracle,C=US” -keypass welcome -keystore E:jboss-4.2.3.GAserverjbossserver.jks -storepass welcome -storetype jks

Step 2 – Sign the Certs
keytool -selfcert -alias serverjboss -sigalg MD5withRSA -validity 2000 -keypass welcome -keystore E:jboss-4.2.3.GAserverjbossserver.jks -storepass welcome

Step 3 – Export the Cert
keytool -export -alias serverjboss -file E:jboss-4.2.3.GAserverjbossserver.cert -keypass welcome -keystore E:jboss-4.2.3.GAserverjbossserver.jks -storepass welcome -storetype jks -provider sun.security.provider.Sun
(You will receive a confirmation message: Certificate stored in file <e:jboss-4.2.3.GAserverjbossserver.cert>)

Step 4 – modify the server.xml file (for JBoss this file is located here: $JBOSS_HOME/server/default/deploy/jboss-web.deployer
Add the following entry:
maxThreads=”100″ strategy=”ms” maxHttpHeaderSize=”8192″
emptySessionPath=”true”
scheme=”https” secure=”true” clientAuth=”false”
sslProtocol=”TLS”
keystoreFile=”E:jboss-4.2.3.GAserverjbossserver.jks”
keystorePass=”welcome”
truststoreFile=”E:jboss-4.2.3.GAserverjbossserver.jks”
truststorePass=”welcome”/>

All done! Restarting the JBoss application server should deploy the new ear file!