Jump to content
We've recently updated our Privacy Statement, available here ×

  • Using Client-Side Certificates to authenticate Jaspersoft Studio to JasperReports Server (mutual auth)

    ghudson_1

    By ghudson_1

      • Features: User Authorization Version: v7.1 Product: Jaspersoft® Studio
     Share

    Issue Description

    In Jaspersoft Studio 7.1.0 it is possible to make Studio offer it's own SSL client-side certificate in a mutual authentication scenario in which the both the server and the client provide their own certificate for authentication to each other.

    Resolution - basic steps

    NOTE: Please note that the use of client-side certificates is only supported by the Jaspersoft Community (community.jaspersoft.com). TIBCO Jaspersoft Technical Support and Engineering do not support it.

    First, create the certificate: 

    Before you begin, make sure you have configured your application server to require client-side certificates. Then create a client certificate as a Java keystore file, for example, client_keystore.jks. Consult the documentation your application server the Java documentation for keytool or other tools used for certificate and/or java keystore creation. 

    Second, configure Studio.  Studio can make use of a jks or pkcs12 store.  You define the location of your keyStore via either JVM arguments or via Studio's Key Store user-interface.

    Via JVM Arguments:

    1. From the command line on the client machine running Studio, import the store file, for example, client_keystore.jks, into your keystore on the client machine. (Create a new keystore if necessary).   Consult the documentation for Java's keytool.

    WARNING: A client-side certificate contains a public key for the client. Make sure to follow your corporate security policies when creating, copying, and using client-side certificates.

    2. Start Studio using JVM arguments by editing the Jaspersoft Studio Professional.ini file:

    -Djavax.net.ssl.keyStore specifies the keystore file.

    -Djavax.net.ssl.keyStorePassword specifies the passphrase of the keystore.

    -Djavax.net.ssl.keyStoreType specifies the store type

    Via Jaspersoft Studio's Key Store Interface:

    In this case, you do not have to add JVM arguments when you start JSS.

     

    1. In JSS, go to Preferences->Jaspersoft Studio->JasperReports Server->Key Store

    2. Click Add and select the keystore you created.

     Share
    Go to entries

    User Feedback

    Recommended Comments

    There are no comments to display.



    Create an account or sign in to comment

    You need to be a member in order to leave a comment

    Create an account

    Sign up for a new account in our community. It's easy!

    Register a new account

    Sign in

    Already have an account? Sign in here.

    Sign In Now

×
×
  • Create New...

© 2024 Cloud Software Group,
Inc. All rights reserved.

Products

Explore