Cryptographic certificates
Bravura Security strongly recommends that users access Bravura Security Fabric using SSL (HTTPS). To do this:
Assign a fixed IP address to each Bravura Security Fabric server.
Assign a single DNS host name to all Bravura Security Fabric servers.
Install the web server (IIS).
Create a certificate signing request (CSR) file.
Submit the CSR file to a certificate authority such as Verisign.
Receive and install a signed certificate.
The SSL/TLS, is all configured and managed by IIS. For detailed information for using IIS, consult Microsoft's documentation.
Once you have configured IIS the following settings should be updated so that the product communicates via the new, https URL.
Click Manage the system > Workflow.
Update BASE IDSYNCH URL with the FQDN of the instance server; for example, https://idm1.bravura1.corp.
Click Update.
Update the various end points to the HTTPS URL that you may have previous configured; for example, if you are using the API SOAP service, edit the
idapisoapservices endpoints. See API SOAP Service (idapisoap) .