Cisco Cisco Prime Service Catalog 10.0 Technical References

To establish a trusted handshake via SSL, the client (that is, the Service Link service) must have a 
valid signer certificate (the public key certificate) that can validate the digital certificate of the 
external web server. If the certificate of the external web server is not signed by a well-known 
Certificate Authority (CA) such as VeriSign, then most likely during the SSL handshake, Service 
Link will not be able to validate the external web server certificate, and the connection will fail. If 
this is the case, the signer certificate must be imported into the Trusted Certificate Authority 
Keystore used by the Service Link service.

If Service Link is connecting to multiple SSL-enabled web servers, it may be necessary to import 
multiple signer certificates, one for each external web server.

 

 
Service Link, as a client, does not support Client Certificate Authentication during SSL handshake.

The following sections describe the configuration procedure in more detail.

Log on to Cisco Prime Service Catalog as a user who can access Service Link.

Navigate to the Service Link module and click the Manage Integrations tab.

Choose the agent that you want to configure.

Open the Outbound Properties page of the agent.

In the HttpOutboundAdapter.RoutingURL field, enter the https address with the secured port number, 
for example, https://192.168.21.202:8444/HTTPSimulator/.

Set the value for the HttpOutboundAdapter.AcceptUntrustedURL field to false to ensure a secure 
connection.

Click Save.

Open the Control Agents tab, and restart the agent.

The instructions for importing the signer certificate depend on the application server (

) that Service Link is running on. Before following the application 

server-specific instructions, you must complete the following step: