IBM i > Tips & Techniques > Application Development

How to Secure Your Web Site Running on IBM i

Five steps to incorporate SSL technology

 

If you’re running a Web application on IBM i, you may be worried about security. The incoming and outgoing HTTP requests and responses exchanged with the HTTP server will contain a customer account number and, therefore, must be secured. If you don’t have any experience with Web security technology, such as Secure Sockets Layer (SSL), you may be wondering if it’s possible to secure your Web site in a very simple and quick way. The answer is yes!

For this article, I’ll share a simple way to secure your HTTP server configuration with SSL technology. There are five easy steps to SSL-enable your HTTP server:

Step 1. Make sure that you have the following product and product option installed:

• For V5R4, Digital Certificate Manager Option 34 of 5722-SS1
• For V6R1, Digital Certificate Manager Option 34 of 5761-SS1

To complete this task you must supply a digital certificate. For more information on how to obtain a digital certificate, see the Digital Certificate Management Web page in the IBM Information Center.

Step 2. Edit your HTTP configuration file.

Enter the following information in your HTTP configuration file:

LoadModule ibm_ssl_module
/QSYS.LIB/QHTTPSVR.LIB/QZSRVSSL.SRVPGM
Listen 80
# Secure HTTP Port
Listen 443
SetEnv HTTPS_PORT 443
# Enable SSL function on this server
SSLEngine On
# Server certificate application name
SSLAppName QIBM_HTTP_SERVER_MYSERVER

 

Tweet