Scenario 4 - Encrypted connection between the Intrexx portal server and external systems (integrations)

When it comes to a connection between Intrexx and external systems, a distinction must be made between whether Intrexx consumes or provides data. If Intrexx consumes data, i.e. acts as the client, only a certificate with a public key needs to be saved in Intrexx. If Intrexx provides data, i.e. acts as the server, a certificate with a public and private key needs to be saved in Intrexx.

Consume data

Intrexx provides options for integrating numerous external systems.



So that you can establish an encrypted connection to these systems, you need a certificate that contains the public key from the external system providers.
You need to save this in the central certificate store of your portal.
Please note: The central certificate store comes with a range of certificates from trusted certificate authorities. These are included in the JDK provided with Intrexx. Therefore, the certificate may already be available in the central certificate store if it is for common external systems that are hosted in the cloud.

Step-by-step guide

To import a certificate to your portal certificate store, please proceed as follows:
  1. Start the Portal Manager.
  2. Log in to your portal.
  3. Open the portal properties ("Portal menu > Portal properties").
    The "Edit portal" dialog will open.
  4. Click on "Certificates".
    You will now be on the "Certificates" page.
    If you have not yet access the certificate store, you will see a lock symbol and a link.



  5. Click on "Click here to access the certificate store".
    The "Certificate store password" dialog will open.



    Enter the password "changeit" if you have not defined a password for the certificate store. (You can change the password for the certificate store in the next dialog.)
    Enter your password if you have defined a password for the certificate store.
  6. Click on "OK".
    You will now see a list of all certificates included with Intrexx.
  7. Click on "+".



    The "Certificate import" dialog will open.



    Name Description
    Download von URL A certificate can be downloaded from the corresponding URL entered here.
    Download from Internet address Allows you to download certificates
    Server / Port Enter the download server (its name or IP address) and the port.
    Import of file A local certificate file can be integrated with this option.
    Add file Opens a dialog where the certificate file can be selected.
    Import of the certificate's text Allows you to directly enter the certificate text. Enter the corresponding text in the edit field.
    This option is a good choice if the certificate is available as a PEM file, for example.
    The file looks something like this:
    -----BEGIN CERTIFICATE-----
    aiwdjpawipAUWEIadlwidhalwihdPAIWHDLAIwhd
    (...)
    aldi13u08142eodaildwycaG9730e8z1qCcadho8
    -----END CERTIFICATE-----
  8. Make the necessary entries.
  9. Click on "Next".
    Details of the certificate selected in the previous step are shown in the next dialog.
  10. Click on "Next".
  11. Provide the certificate with an alias name in the next dialog.
    The alias name helps you identify the certificate in the certificate store.
  12. Click on "Finish".
    You will now be returned to the certificate store. The certificate imported by you is shown here.
    You habe imported a certificate into your portal certificate store.

Provide data

Intrexx can provide data for OData (and web services).



In this case, you must manually create your own keystore and store the certificate with the public and private key there.
Intrexx uses "Jetty" to provide data via OData. The keystore must be stored on the Jetty web server.
More information about "Jetty" is available here: https://www.eclipse.org/jetty/