The Untrusted Self-signed Certificate warning dialog is displayed when connecting to a Rhapsody engine that presents a valid self-signed certificate that is not trusted by the Rhapsody IDE. This warning is expected when connecting to a Rhapsody engine for the very first time unless that Rhapsody engine has explicitly been changed to use a CA issued certificate. This is because a Rhapsody engine will be using a self-signed certificate unless explicitly changed.
The warning is shown because the Rhapsody IDE is unable to determine whether it is connecting to the correct engine or not. This can be verified manually by comparing the certificate thumbprint shown in the screenshot, to the certificate thumbprint stored on disk on the Rhapsody server in the <Rhapsody>/rhapsody/ide.sha1.txt file. If these thumbprints match then the certificate can safely be trusted; if they do not match then the connection should be aborted as it is not the expected SSL certificate.
It is critical that the identity of the Rhapsody server is verified before establishing the connection by comparing the SHA-1 certificate thumbprint presented in the warning shown in the following screenshot, to the value on the Rhapsody server generated at startup. If in doubt, consult a system administrator, as failure to verify the Rhapsody identify could compromise the integrity of the engine.
| Action | Description |
|---|---|
| No | Cancels the connection so the login does not take place. |
| Yes | Allows the login attempt to proceed. |
| Permanently trust this connection | If Yes is clicked with this not checked, then the SSL certificate is only trusted for this current IDE session. This warning is shown again the next time the Rhapsody IDE connects to this engine. If Yes is clicked with this option checked, then the SSL certificate is saved so that this warning does not need to be displayed again for this Rhapsody engine as long as the Rhapsody engine keeps using the same SSL certificate. Rhapsody engines trusted in this manner can be viewed using the Rhapsody IDE Trust Manager application. We recommend this option be checked once the certificate thumbprint has been manually verified as this will enable the Rhapsody IDE to detect a subsequent certificate change. |
| View certificate | Displays the SSL certificate presented by the Rhapsody engine using the standard Windows® certificate viewer. |