Configuring the Bootstrap Configuration Tool

The Bootstrap Configuration Tool allows you to configure the database connections to operational and warehouse databases. The Bootstrap Configuration Tool is initially configured during IEE installation. However, you can open the tool at any time to maintain certificates.

The Encrypted Database Connection string and certificate details are stored in the ServerBootstrap.config file, which resides on the server.

Depending on the database implementation, the Database Type is typically selected for you when you open the tool. When it is time to change or renew the certificates, configure the settings in the Encryption Certificates pane.

IEE supports database connections over SSL. For more information about configuring the database to allow SSL connections, see Configuring SSL for SQL Server. Once the database is configured, add the following parameters to the database connection string in the Additional Parameters pane.

  • Encrypt = Yes
  • TrustServerCertificate = true.

The Bootstrap Configuration Tool is available only on the IEE application server. IEE stores the UiBootstrap.exe in the bin folder.

The following illustration shows an example of the Bootstrap Configuration Tool configured for a SQL database with SSL.

Configuration Bootstrap tool screen.

Note: Encrypt must be set to Yes in order to have an encrypted connection between the client and the database. And TrustServerCertificate must be set to True.

  1. Right-click UiBootstrap.exe and run as administrator. This file is typically located either in the bin directory or on the application server desktop.

  2. Configure the following parameters:

    • Certificate Purpose. Use the dropdown menu to select a value. In a typical environment, select Encrypt Database Connection in Server Bootstrap, which is the client authentication. The valid values are as follows:

      • Encrypt Database Connection in Server Bootstrap. Secures a web service connection (SSL) and authenticates a web service to the client. Select this option in typical server installation scenarios.

      • Encrypt Database Connection for Transmittal to Client. Authenticates a web service client to the service (service authentication).

      • Encrypt Password for Transmittal to Server. Encrypts web service passwords before storing them in the database. Add only one row for this purpose (encrypt external password).

    • Store Location. Select Current user or Local machine.

    • Store Name. Select Personal, Trusted People, or Trusted Publisher.

    • Certificate Subject. Click Pick Certificate. A Pick Certificate dialog opens. Select a certificate to use for encryption. Click OK to select the certificate and close the Pick Certificate dialog. Based on the selected certificate, the following settings populate with a value.

    • X-509 Find Type. After selecting a certificate, the value fills in with a default value from the selected certificate. The valid values are as follows:

      • Find by Thumbprint

      • Find by Serial Number

      • Find by Subject Name

      • Find by Subject Distinguished Name

      • Find by Subject Key Identifier

    • Find value. This box is filled in based on the selected certificate. The Find Value changes as you change the Find Type.

  3. Click Save Client Bootstrap.

  4. You are prompted for your User Name and Password. Typically, this is your IEE Application username and password.

    • If you entered the correct username and password, a message displays that the bootstrap save succeeded.

    • If the save did not succeed, re-enter the username and password.

      Bootstrap saved succeeded dialog.