Hi,

I have installed TRC server in my environment and installed the broker component in another machine using IBM Bigfix console,

I have generated the two certificate using ikeyman too from JAVA , one for main server (jks format), and another one is broker certificate (.p12) format,
The broker certificate .p12 and .cerm generated the broker fully domain name, after paste the cerm certificate in TRC server console–>admin–>new certificate–>paste the cert file content and submit,

Then the broker.property file need to change some entry, the file is located the broker machine installed directory–>program data–>tivoli–>broker–>broker.property file,

Public address and port for this broker

PublicBrokerURL =test.testdomain.com:443

Server configuration

ServerURL =https://test1.testdomain.com/trc

DefaultPortToListen = 443

DefaultSourcePort = 0

DefaultBindTo = 0.0.0.0conform

DefaultBindTo6 = ::

DefaultRetryDelay = 45
DefaultKeepAlive = 900
DefaultTLSCertificateFile = key.p12
DefaultTLSCertificatePassphrase = certificate password

Inbound connections

prefix.ConnectionType = Inbound
prefix.PortToListen = 443

prefix.BindTo = see DefaultBindTo

prefix.RetryDelay = 45
prefix.TLSCertificateFile = key.p12
prefix.TLSCertificatePassphrase = certificate password

prefix.TLSCipherList = see DefaultTLSCipherList

prefix.AllowEndpoints = yes

prefix.AllowBrokers =

Reverse proxy connection
prefix1.ConnectionType = InboundHTTPS
prefix1.PortToListen = 443

the above is broker property change content file format,

after change the property file using the start broker session link–>from TRC admin console home page,

the link has been generated from the TRC web console,

The link has been accessible from outside of the network mean , we need to enable the NAT policy from the gateway ,

The host broker name, also need Global DNS record for resolving the broker host name, the port number is 443 ,

If you need more details please revert back the same,

Thanks,
Nagaraj,