Internal and External ActiveMatrix Administrator Communication
Running the External Connector of the ActiveMatrix Administrator
We recommend that you:
- Run the external HTTP connector of the ActiveMatrix Administrator in the SSL-enabled mode. This connector serves as the web front end for the ActiveMatrix Administrator. (The default port is 8120.)
- Use your own SSL certificate obtained by a well-known certificate authority. If you update the SSL certificate, you must obtain the certificates used by ActiveMatrix Administrator CLI scripts. For information about how to update the
remote.properties
file of CLI scripts to provide client certificates, seeTIBCO ActiveMatrix® Service Grid Administration. - Configure the external HTTP connector to use the TLS 1.2 protocol. Starting with ActiveMatrix Service Grid 3.4.0, the TLS 1.2 protocol is enabled by default.
Running the Internal Communication of the ActiveMatrix Administrator
Between ActiveMatrix enterprise entities, the communication is either via TCP or TIBCO EMS, and we recommend that both these modes of transport are secured via SSL.