Starting Data Grid Processes With Authentication

Prerequisites

Prior to starting your data grid processes with authentication, define your data grid and its component processes as described in starting affiliated realm servers and secure realm servers in Enabling Transport Encryption on a Data Grid.

Procedure

  1. For the tibdg and tibdgadmind tools to authenticate a secure realm server specify the following properties:
    • --trust-file <path>
    • For providing the user credentials, use one of the following methods:
      • --user-password-file <path>. Cannot be used with -user and -password options. For details, see Password File.

        or

      • -user <user_name> -password <pwd_option>. Cannot be used with --user-password-file option. <pwd_option> can take one of the following values:
        Options Usage Example
        pass:<password> -password pass:mypassword
        env: env:<environment variable>
        stdin You are prompted for the password when the command executes.
    Note: tibdg requires the user to have the ftl-admin role. tibdgadmind requires the user to have ftl-satellite and ftl-admin roles.
    For example:
    tibdg -r %REALM_URL% -s my_script_file.tibdg --user-password-file /path/to/my/user-password.txt --trust-file %TRUST_FILE% 
    
        tibdg -r %REALM_URL% -s my_script_file.tibdg -user admin -password pass:password --trust-file %TRUST_FILE% 
    
  2. For the tibdgnode, tibdgkeeper, and tibdgproxy processes to authenticate with a secure realm server specify the following properties:
    Note: tibdgnode and tibdgkeeper processes require a set of user name and password with the ftl role. tibdgproxy processes require a set of user name and password with the ftl-admin role.