How to setup WSO2 Carbon in production?

Products
Technology for your digital platform that you can run yourself, in a private cloud, or as SaaS.
API Management
Integration
Identity & Access Management
Your Digital Platform, as a Service
Platform
- Your internal developer platform as a service to quickly deliver applications.
Solutions
By Technology
- API Management
  Solutions to deliver your APIs in any environment.
- Integration
  Break down data silos, streamline workflows, and unlock insights.
- Identity & Access Management
  Create secure, unique, and compelling digital experiences with ease.
  
  Customer IAM
  
  For Consumers (B2C)
  
  For B2B Applications (B2B CIAM)
  
  For Citizens (G2C)
  
  Workforce IAM
  
  API Access Management
By Industry
- Healthcare
  Provide awesome digital experiences for payers, providers, and patients.
- Finance
  Deliver secure financial experiences at speed.
- Government
  Deliver secure and simplified digital services for governments and citizens.
Featured Blog
- Implementing an Event-Driven GraphQL BFF with Real-Time Notifications
  Read Blog
Resources
- Training and Certification
- Events
Featured Whitepaper
- Transactions in a Microservice World
  Read Whitepaper
Support
- Subscription
  Learn About the Benefits of a WSO2 Subscription for Commercial Use.
- Updates
  Maintain the health and security of your solution.
- Consulting Services
  A full range of services to help you get the most out of your WSO2 project.
Featured Blog
- Self Manage Your WSO2 Support Portal Users
  Read Blog
Company
- About WSO2
  Learn about who we are and our journey.
- Team
  The people behind our innovative technologies.
- Customers
  See how we’ve helped leading enterprises from around the world.
- Careers
  Discover how you can make an impact.
- Partners
  Learn about the benefits of partnering with us.
- News
  The latest updates and insights.
Customer Spotlight
- YOMA x WSO2: Building Better Banking Relationships
  Read Case Study
Community
Contact Us
EN
- French
- German
- Portuguese
- Spanish
Profile

Dimuthu Leelarathne
Architect - WSO2

Here is a check-list that administrators should run through before setting up Carbon in a production environment.

Change the server SSL Certificate
Database Configuration
Password Protection

1. Change the server SSL Certificate

WSO2 Carbon uses a self-signed certificate to enable SSL, so you should consider changing it. This is a mandatory step if you are planning to use security sensitive transactions. The key store details and passwords are given by in the <carbon-home>/conf/carbon.xml

If the SSL certificate and the private key is in the pem format,

Convert the private key and certificate to pkcs12 keystore using following command.

openssl pkcs12 -export -out keystore.pfx -inkey privatekey.pem -in certificate.pem -certfile CACert.pem

Use keytool in jdk 6.X to import the pkcs12 keystore to the wso2carbon.jks.

keytool -importkeystore -srckeystore keystore.pfx -destkeystore wso2carbon.jks -srcstoretype pkcs12 -deststoretype jks -srcstorepass srcstorepass -deststorepass deststorepas

Open the conf/carbon.xml file and change the KeyAlias and KeyPassword.

If the SSL certificate and private key is in jks format

Use keytool in jdk 6.X to import the pkcs12 keystore to the wso2carbon.jks.

keytool -importkeystore -srckeystore keystore.jks -destkeystore wso2carbon.jks -srcstoretype jks -deststoretype jks -srcstorepass srcstorepass -deststorepass deststorepas

Open the conf/carbon.xml file and change the KeyAlias and KeyPassword

2. Database Configuration

WSO2 Carbon ships with a H2 database, but it can work with many RDBMS by different vendors.

xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx the database connection details picture on registry.xml and user-mgt.xml

Minimally,

Change the database password by editing the registry.xml and user-mgt.xml.

If you are want to change the database to Oracle, MySQL or MSSQL,

Create an empty database in the server. It is not required to create the schema.
Download the relevant JDBC Driver and copy it into the <carbon-home>/repository/components/extensions folder.
Change database connection details in user-mgt.xml and carbon.xml
Start the WSO2 Carbon server with the following option. The server will automatically create the tables in the database and configure itself.

sh wso2server.sh -Dsetup

If you want to change the database to a RDBMS other than Oracle, MySQL or MSSQL,

Create the database and it's table by looking at the sql scripts available in <carbon-home>/dbscripts
Change database connection details in user-mgt.xml and carbon.xml
Start the server normally

3. Password protection

Configure MD5/Hashed ...

Implementing an Event-Driven GraphQL BFF with Real-Time Notifications

Transactions in a Microservice World

Self Manage Your WSO2 Support Portal Users

YOMA x WSO2: Building Better Banking Relationships

How to setup WSO2 Carbon in production?

1. Change the server SSL Certificate

2. Database Configuration

3. Password protection

About Author

API Management

Integration

IAM

Internal Developer Platform

Solutions

Resources

Support

Company

Follow us