Cisco Cisco Workload Automation 6.3 Installation Guide
176
Configuring SSL Messaging
Configuring SSL on the Client Manager
MessageBroker.SSL.keyPassword: Password needed to read the key, if it's different from the password
of the key store
MessageBroker.SSL.trustStore: Path to the trust store
MessageBroker.SSL.trustStorePassword: Password needed to open the trust store
.
Note: You must obfuscate the passwords before storing them in the property files. Refer to
for instructions.
7.
Save the property file.
8.
.
Configuring SSL on the Client Manager
In this section, you will enable SSL on the Client Manager with the keystores you obtained from earlier section.
To enable SSL on the Client Manager:
1.
Shut down the Client Manager.
a.
Copy the key store for the Client Manager to the config directory in the Client Manager's installation directory.
b.
.
If you are setting up a fault tolerant system, import the certificates of the Backup Master and Fault Monitor into this
trust store also.
trust store also.
When done, copy the trust store to the config directory in the Client Manager's installation directory.
2.
Use a text editor to open the property file config/clientmgr.props located in the Client Manager's installation
directory.
directory.
Note: It may be a good idea to back up this file before editing it to ensure there is a good copy to fall back to.
3.
In the editor, locate the segment of SSL properties that looks like the following.
#MessageBroker.SSL.enabled=Y
#MessageBroker.SSL.keyStore=
#MessageBroker.SSL.keyStorePassword=
#MessageBroker.SSL.keyPassword=
#MessageBroker.SSL.trustStore=
#MessageBroker.SSL.trustStorePassword=
If such segment can't be found, manually insert these lines.
Uncomment each property starts with "
#MessageBroker.SSL." by removing the leading pound sign '#' character.
The property MessageBroker.SSL.enabled determines whether to activate other SSL properties and enable SSL
messaging. Value '
messaging. Value '
Y' means yes, and 'N' no. You can use this property switch between SSL and non SSL messaging
modes.
4.
For each of the above SSL properties, assign value applicable to your certificate.
MessageBroker.SSL.keyStore: Path to the key store
MessageBroker.SSL.keyStorePassword: Password needed to open the key store
MessageBroker.SSL.keyPassword: Password needed to read the key, if it's different from the password
of the key store
MessageBroker.SSL.trustStore: Path to the trust store
MessageBroker.SSL.trustStorePassword: Password needed to open the trust store
Note: You must obfuscate the passwords before storing them in the property files. Refer to
for instructions.