Using ESCWA with a TLS Enabled API Client

ESCWA can be configured for TLS security. See Configuring TLS for the ESCWA Client for more information. When this configuration is performed you must ensure that the process that accesses the API also trusts the root certificate authority which signed the certificate that ESCWA is using for TLS.

For the ESCWA application, or the interactive API, this will be the browser which you are using.

Note: The FireFox browser does not use the Windows certificate store. This means that you need to add the root CA certificate to your FireFox store.

If you are using a scripting language like PowerShell or Python, you will need to ensure that they trust the root certificate authority before making API requests to the TLS enabled ESCWA.

Configuring the Eclipse IDE for TLS Enabled Connection Between Server Explorer and ESCWA

The Eclipse IDE makes requests via ESCWA when using the Server Explorer.

To ensure trust between the Eclipse IDE and the root Certificate Authority (CA) which has signed the certificate securing ESCWA, perform the following configuration steps:

  1. In Server Explorer, right-click Local [localhost:10086], and then click Properties.

    This opens the Edit ESCWA Properties dialog box.

  2. In the Name field, type the name of the ESCWA instance.
  3. In the Server address (IPv4/Hostname) field, type the ESCWA instance's hostname.
  4. In the Server port field, type the port number.
  5. Check TLS Enabled.
  6. In the CA Certificate field, type the absolute path and file name to your CA root certificate. Alternatively, click Browse and navigate to the file.
  7. Click OK.
Parent topic: ESCWA Client Web API