Installing the BDSS Components 3-13

3.7 Setting SSL

If the configuration of the Exchange 2007 servers require secure communications, then you must configure the Exchange 2007 Connector to support SSL to enable it to communicate securely with the Microsoft Autodiscovery and Exchange Web Service EWS. The Certificate Authority CA that issued and signed the certificate bound to the EWS server must be installed as a trusted CA in the trust store used by the connector. By default, the application deployed to WebLogic Server use a trust store called DemoTrust.jks, which is located in the WL_HOME\lib directory. To configure SSL, you must first obtain the X.509 certificate bound to the IIS Web Server hosting the Exchange Web Services and then update DemoTrust.jks with this certificate. To install the certificate: 1. Obtain the X.509 certificate bound to the IIS Web Server hosting the Exchange Web Services and save it as a file on the file system on the same box the connector is being deployed on. For the purposes of this document, the file is saved at c:\temp\exchangecacert.cer. 2. Log in to the Exchange 2007 server. 3. Start IIS Manager.

4. Right click the Exchange virtual directory typically at Web Sites Default Web

Site Exchange and select Properties. 5. Navigate to the Directory Security.

6. Click View Certificate.

7. Click the Details tab and then select Copy to File.

8. In the wizard, select the defaults on each page until you are prompted for the file name. Specify the name and location for the file. For example, enter c:\temp\exchangecacert.cer. To update DemoTrust.jks with the certificate: 1. Open a command window and change the current directory to the location of DemoTrust.jks. For example, enter the following command: cd c:\WL_HOME\wlserver_10.3\server\lib Note: You can access the System MBean Browser from the context menu that appears when you right-click a domain in the Navigation pane. Using the System MBean browser, you can invoke some operations on the JPS MBean, but not all of them. The steps described in Section 3.6 are the correct method for entering credentials. You can also use the System MBean browser to manage the BDSS MBeans, which you use to configure BDSS Hub components and server and connector instances. Note: The following instructions assume a deployment that uses the default trust store, DemoTrust.jks. If you have created a different trust store and have configured WebLogic Server to use it instead of the default trust store, you can still use these instructions, but you must define the Java keytool’s name and password. 3-14 Administrators Guide for Oracle Business Data Synchronization Server 2. Use the Java keytool utility to import the certificate. Assuming your JDK is installed at c:\program files\java\jdk1.6.0_11, issue the following command: C:\Program Files\Java\jdk1.6.0_11\bin\keytool -importcert -trustcacerts -file C:\temp\exchangecacert.cer -keystore DemoTrust.jks -storepass DemoTrustKeyStorePassPhrase -alias XXX

3.8 Enabling Data Transformation and Filtering for Exchange 2007 Connector

The Exchange 2007 Connector uses XSD and XSLT files to transform records to and from the Hub XML and PIM XML forms and XML files to filter unwanted records. These files must be located on a database file system and the location must be configured in BDSS. The seed data script provides you with a default location of c:fusion_sync root. For example, the seed data script populates the database with such strings as c:fusion_syncExchange2007.... To set up the various XSLT and XSD files on the file system and configure the XSL and XSD files in BDSS, you can copy the transform and filter directories from where you extracted BDSS.zip to your preferred location. For example, the directory structure may be in the following form: MY DIRECTORYexchange2007tasktransformexchange2007task.xsd To set up the files: 1. Copy the Exchange 2007 XSD and XSL files to a local directory having the following hierarchy: ■ rootexchange—This directory should contain a contact and task subdirectory and the exchange2007typelibrary.xsd file. ■ rootexchangecontacttransform—This directory should contain the following three files: exchange2007contact.xsd exchange2007contacttohubcontact.xsl hubcontacttoexchange2007contact.xsl ■ rootexchangetasktransform—This directory should contain the following three files: exchange2007task.xsd exchange2007tasktohubtask.xsl hubtasktoexchange2007task.xsl ■ rootexchangecalendartransform—This directory should contain the following three files. pimicalbody.xsd exchange2007calendartohubcalendar.xsl hubcalendartoexchange2007calendar.xsl Note: If you use a trust store other than DemoTrust.jks, specify the appropriate name and password in the -keystore and -storepass options, respectively.