Custom Domain

A custom domain is a unique name that identifies your website. There are scenarios where you do not want to expose the default domain provided by IBM. In such cases, you can customize the default tenant URL or domain and access the tenant using your own domain.

Use custom domains if you want to make your application accessible on your own domain. Custom domains direct requests to your own URL.

Steps to configure custom domains

You can request for a custom domain name for your tenant, for example, if your company domain is abc.com, you can have the domain name as https://subdomain.abc.com. Contact IBM support for details on how to enable and configure the custom domain capability.

Determine the number of domains to be configured for your account and the list of custom domains. The domain names are owned by you.
Note
- A subdomain name cannot have more than 20 characters, for example, storage_filedocuments.yourwebsite.com exceeds the character limit.
- A subdomain name cannot have a period (.), for example, storage.filedoc.yourwebsite.com should be storage_filedoc.yourwebsite.com.
- A subdomain name must be unique for each tenant, for example, it should be a different name for Development, Test, and Production.
Decide the SSL certificate needed, which depends on whether you want to protect a single domain, multiple subdomains of a domain, or multiple domain names.
Share the number of domains to be configured for your account and the list of custom domains with IBM.
IBM will create a certificate signing request (CSR) and will provide you the CSR details.
Based on the CSR, get the SSL certificates from a Certificate Authority (CA) and determine the number and type of domains you want the certificates to protect.
Send the SSL certificates to IBM to confirm the certificate formats.
Certificate format
Provide the certificate in Base64 .cer or .crt format.
Verification for base 64 format: The start of the file will be “————–BEGIN CERTIFICATE————–” and will end with “————–END CERTIFICATE————–”.

Key format
Provide the key in Base64 .key format.
Verification for base 64 format: The start of the file will be “————–BEGIN PRIVATE KEY————–” and will end with “————–END PRIVATE KEY————–”.
After the SSL certificate formats are confirmed, IBM will configure these certificates on the custom domain load balancer, and will send you the CNAME to be mapped to the respective DNS.
Using the CNAME, configure your DNS to point to the custom domain load balancer.

After you have completed the configuration or mapping, you can start using the custom domain names to access the product.

Note

Contact IBM support for information on allowing the custom domain network load balancer (NLB) IPs and the ports to open. See Allowed IP Addresses for more information.

Checks for existing assets after configuring custom domains

External end points will change after the custom domain is configured, so you need to inform your partners about the new domain.
Verify all assets that expose end point URLs, for example, REST APIs, SOAP APIs, Flow services over HTTP, webhooks, and so on.
Under the Salesforce connector, the Default Authorization option is disabled for custom domains. The existing Salesforce authorizations created using Default Authorization option cannot be edited.
Few assets, for example, SOAP APIs and REST APIs may not work after the custom domain change. Modify or recreate those assets to support the new custom domain for external use.
External authentication mechanisms like OAuth will not be available.
If you are an existing customer, you need to delete the triggers created earlier and create new triggers.
Verify and update the REST Connector and SOAP Connector account details. It is recommended to recreate REST connectors and SOAP connectors with the new custom domain end points.
Reconfigure the webMethods Integration Server settings to use the On-Premises Connector.