Ask Your Question
1

RPC Pipeline using TLS [closed]

asked 2018-05-24 09:01:36 -0500

anonymous user

Anonymous

I have some difficulties to set a RPC Pipeling using TLS.

I'm not sure what should be the values for the keystore and truststore files. I see that in /etc/sdc there is a keystore.jks. Should I use this file or should I generate another one ?

Concerning the truststore file, what is its content ? Should I use the keystore file from the origin as the truststore for the destination ?

edit retag flag offensive reopen merge delete

Closed for the following reason the question is answered, right answer was accepted by youa
close date 2018-05-25 06:51:30.535608

1 Answer

Sort by ยป oldest newest most voted
1

answered 2018-05-24 10:31:18 -0500

jeff gravatar image

The keystore.jks file in /etc/sdc is the keystore that is part of SDC itself. It's used by the web server providing access to the Data Collector via the UI or REST calls. That shouldn't be used for particular stages in particular pipelines.

What you need to do is add the certificate used by the server pipeline to its keystore, as well as the truststore for the client pipeline. To do this, you may need to create new keystore files (via keytool) in a directory you control that is accessible by SDC at runtime, and then import the certificates as required into those.

edit flag offensive delete link more

Comments

Ok, thanks, now it works.

youa gravatar imageyoua ( 2018-05-25 06:51:12 -0500 )edit

Question Tools

1 follower

Stats

Asked: 2018-05-24 09:01:36 -0500

Seen: 23 times

Last updated: May 24