HP XP7 Replication Manager Configuration Guide (TK981-96012, May 2014)
Figure 16 Flow of operation for setting up secure communications between Replication Manager and
BCM (IHS)
If you use a well-known certificate authority (CA), its server certificate might already be in the truststore
(jssecacerts). In this case, you do not need to import the CA’s server certificate again.
For more information on the procedure for using BCM (IHS) as an SSL server, see the description of
setting up HTTPS connections in the HP XP7 Business Continuity Manager Installation Guide.
For more information on the procedures for Common Component and information on the truststore,
see the following descriptions in the HP XP7 Command View Advanced Edition Administrator Guide:
• Importing a server certificate into the truststore of HP XP7 CVAE
• Checking the server certificates imported into the truststore of HP XP7 CVAE
After importing the server certificate for the IHS to the truststore (jssecacerts), select HTTPS as the
transmission protocol in the Replication Manager GUI window for adding (or the window for editing)
the information source, and specify the port number for HTTPS communications. For more information
on how to add or edit the information source, see the online Help.
NOTE:
Regarding server certificates:
• If you manage multiple BCM (IHS) hosts as information sources, you must create server certificates
for each server and import them into the truststore (jssecacerts) for the management server
running Replication Manager.
• A secure method must be used to transmit the server certificate for the IHS to the management
server running Replication Manager.
Security management108