Learn how to enable SSL for Workflow.

1. Run the following command to create the keystore. The following commands will help you to generate an SSL certificate:

   keytool -genkeypair -alias workflow -keyalg RSA -keysize 2048
    -storetype PKCS12 -keystore C:/Reltio/workflow/workflow.p12 -validity 3650
   

2. Run the following command to enable additional parameters. For example, the port in which the SSL communication occurs:

   
   "%JAVA_HOME%\bin\java"
           -agentlib:jdwp=transport=dt_socket,server=y,suspend=n,address=5005
           -Dfile.encoding=UTF-8
           -Dspring.config.additional-location=classpath:/application.properties
           -DFS_DIR=C:/Reltio/workflow/ -DWORKFLOW_CONFIG_NAME=app.properties
           -Dserver.port=8443
           -Dserver.ssl.key-store-type=PKCS12
           -Dserver.ssl.key-store=C:/Reltio/workflow/workflow.p12
           -Dserver.ssl.key-store-password=<secret for you keystore>
           -Dserver.ssl.key-password=<secret for you ssl key>
           -jar C:/Reltio/workflow/web-2021.2.0.0.jar
   

   Tip:

   • Enter a new port number, -Dserver.port=8443, when you aren't able to start the workflow. Your local machine may have a port conflict.

   • Ensure that the -Dserver.ssl.key-store-password and -Dserver.ssl.key-password fields have correct values.

3. Check if the HTTPS protocol is enabled.
4. Select the following link:
   https://localhost:8443/workflow-adapter/workflow/status.

   When we open the link that we can see the following response from the /status endpoint.

      {
       "memory": 
       {
           "JVM_heap_size": 4294967296,
           "Memory_used": 2694664496,
           "Max_memory": 4294967296
       },
       "status": "OK"
   }

   

   Note: The above warning message appears when you try to open a page with a self-signed certificate. Select Advanced and follow the procedure. The page will be reloaded automatically.