Broker and Director SSL

The communication between Manager components (such as the connection between Brokers and Directors, and the connection between Primary Director and Secondary Director) can be configured to use SSL. Note that because they use pure sockets for communication, HTTPS does not need to be enabled on the Manager.

If you are enabling SSL for Manager components, it must be enabled on all Managers.

Warning

You must not change your Primary Director until all Brokers and Secondary Director have been changed.

To change to SSL connections on a Manager:

1. Copy server.keystore into the DS_DATA/certs directory of your Directors.

2. If using a self-signed certificate, copy ssl.keystore into the DS_DATA/certs directory of your Brokers and Secondary Directors.

Go to Admin > System Admin > Manager Configuration > Security, and update the SSL KeyStore Password on all Directors.

Perform a Manager Reinstall

In the Local Configuration step, set SSL Enabled to true.

Under Broker and Secondary Director Login, set SSL Enabled on Directors to true.

Did you find this helpful?

Yes No