Secure Communication

Use One-Way SSL

• •Import the server certificate to the <Secure Agent installation directory>\jre\lib\security\cacerts file. Use the following command:
keytool -importkeystore -srckeystore <PathtoCert>\clientSSL.p12 -srcstoretype <type of certificate pkcs12> -destkeystore <Informatica agent Installation location\jre\lib\security\cacerts -deststoretype JKS
• •Add JVM options for truststore file name and truststore password:
• - Click Configure > Runtime Environments and select an agent.
• - Select Type as DTM under System Configuration Details.
• - Add the following JVM options:
• ▪ JVMOption1=-Djavax.net.ssl.trustStore=<absolute path of the .jks truststore file>
• ▪ JVMOption2=-Djavax.net.ssl.trustStorePassword=<truststore password>
• •Specify the name of the truststore file and truststore password in the TrustStore File Name and TrustStore Password connection properties.

Use Two-Way SSL

• •Add JVM options for keystore file and keystore password:
• - Click Configure > Runtime Environments and select an agent.
• - Select Type as DTM under System Configuration Details.
• - Set the following JVM options:
• ▪ JVMOption3=-Djavax.net.ssl.keyStore=<absolute path of the .jks keystore file>
• ▪ JVMOption4=-Djavax.net.ssl.keyStorePassword=<keystore password>
• •Specify the name of the keystore file and keystore password in the KeyStore File Name and KeyStore Password connection properties.

1. 1. Connection attributes
2. 2. JVM property

1. 1. Connection attributes
2. 2. JVM property
3. 3. Certificate imported at <Secure Agent installation directory>\jre\lib\security\cacerts