Enabling Mutual Authentication for Author and Components

Caliber Author and all other Caliber components support mutual authentication when the server is in SSL mode.
Note: Micro Focus recommends that you to use your own certificate for the server and the client.

To enable peer authentication:

  1. Copy custom certificate to each client machine in the default or custom directory. The default client certificate caliber-cert.p12 installs in C:\ProgramData\identities.
  2. To change the default certificate location or file name:
    1. Navigate to the registry keys and locate HKEY_CURRENT_USER\SOFTWARE\Borland\CaliberRM\Settings.
    2. Locate the CertificateKeystore certificate key and configure it with the full path to the client certificate; default is C:\ProgramData\identities\caliber-cert.p12.
  3. Locate the client root trusted Caliber certificate or copy custom certificate to C:\ProgramData\Trustpoints.
  4. To change the default location of certificate configure HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Borland\CaliberRM\11.5\Client\TrustpointsRepository to point to the directory where the certificate resides.

    For client installed on a 32-bit: HKEY_LOCAL_MACHINE\SOFTWARE\Borland\CaliberRM\11.5\Client\TrustpointsRepository.

  5. For other components, such as Visualize and Review:
    1. Copy custom client certificate to C:\ProgramData\identities or to a custom directory, or use the default caliber-cert.p12 certificate.
    2. If using a custom certificate, change the filename in CertificateKeystore registry key.
    3. Copy custom client root certificate to C:\ProgramData\trustpoints or to a custom directory, or use the default Caliber certificate
    4. If using a custom directory, change the setting in TrustpointsRepository registry key.
After completing the configuration on all client machines, when users launch Caliber Author or any Caliber component, the component will look for a trusted server certificate and the server will look for the component trusted certificate.