Documentation Center

Connecting to Fredhopper using HTTPS

You can connect to Fredhopper in a hosted environment (running in the cloud) through HTTPS. Connecting to Fredhopper running on premise through HTTPS is not supported. To connect to Fredhopper through HTTPS, you need to import a trust certificate into your Content Delivery key store.

Procedure

  1. Export the Fredhopper certificate:
    1. Open a browser and enter the following URL:
    2. Look up the certificate information and save the certificate. For example, in Google Chrome:
    3. Click the padlock icon with the x in it next to the URL.
    4. Click certificate information on the details tab.
    5. Click copy file.
    6. Save the file with name (for example) fredhopper.cer using Base64 encoding.
  2. Add the certificate to the JRE keystore:
    1. Determine where the cacerts file is located. Cacerts is the default keystore file used by Java to manage certificates located in JAVA_HOME/lib/security/cacerts directory. The default password for the keystore is changeit.
    2. Export the Fredhopper certificate.
    3. Assuming the file is called fredhopper.cer, enter the alias fredhopper for the certificate.
    4. Open a command line and import the file:
      keytool -import -alias fredhopper -keystore JAVA_HOME/lib/security/cacerts -file fredhopper.cer
    5. When prompted for a password, use changeit.
    6. When prompted whether to trust this key, respond yes.
    7. Check whether the certificate has been added:
      keytool -list -v -keystore JAVA_HOME/lib/security/cacerts  > java_cacerts.txt
    8. Open the java_cacerts.txt and search for fredhopper.
  3. Optional: If you have created your own keystore file, add the certificate to the file and configure the JVM to use that keystore by specifying the system properties trustStore and trustStorePassword:
    1. Add registry keys with the certificate properties.
    2. Add the certificate properties to the jvm.xml.