Need help understanding and implementing SSL Encryption for BP Web Services

SuchitMathur · ‎27-02-19

In BP v6.1, I've created and exposed some Blue Prism Objects as Web Services, and now I'd like to encrypt the calls coming into these Web Services. I've reviewed the 'Securing BP Network Connectivity' guide, but still feel pretty lost as to how exactly i setup encryption and validate it. Here's what I've done so far: 1) Worked with my Network Team to create BP.cer and BP.pfx using the same Common Name and same .csr 2) Installed BP.pfx on my Web Service endpoint (the resource which will execute the WS) in non-admin MMC - Trusted Root Certification Authorities for Current User 3) Started the BP service with the /sslcert flag and thumbprint from the installed BP.pfx; the Service started with no errors At this point, I'm not sure how to validate that what i've done so far is correct, nor how to actually validate that the encryption is working correctly. One simple test that I tried is that I'm no longer able to access the Web Service homepage for that resource (:8181/ws/) via http or https. Can someone please provide me some guidance and their own experiences setting up SSL encryption? Thanks!!

SyedRaza · ‎01-03-19

Hi, Invoke the exposed web service (https protocol) using tools like SOAPUI and Postman. Also make sure you have created certificate both in App server and Run time resource (where web service is exposed) and also make sure CN name shouldn't be same with RTR and app server; Last but not least, credentials which you're using to invoke web service should be part of your Robotics corp account (AD groups).

PrathyushaMelap · ‎23-09-20

Hello Syed,

When you say the CN name should not be same in App server and RTR. Do we need to create a new certificate with new CN name?

------------------------------
Prathyusha Melapindi
------------------------------

SS&C Blue Prism Community

Need help understanding and implementing SSL Encryption for BP Web Services