Configuring One-way SSL between Administrator Agent and Processing Unit Instance
To enable one-way SSL authentication, configure SSL properties in the BusinessEvents Enterprise Administrator Agent as well as BusinessEvents processing unit instances.
- Procedure
- Add the following properties to the
be-teagent.tra file:
java.property.javax.net.ssl.trustStore=
<location of the truststore file>java.property.javax.net.ssl.trustStorePassword=
<password of the truststore file>Note: Ensure that all BusinessEvents instances public certificates are stored in a single trust store.To do this, you can also use the keytool utility as follows:
keytool -import -alias pu1 -file <pu1 certificate> -keystore <path to mytruststore> keytool -import -alias pu2 -file <pu2 certificate> -keystore <path to mytruststore>
Where,
pu1
andpu2
are two BusinessEvents processing unit instances. - Add the following
System Properties for each processing unit instance using the BusinessEvents Enterprise Administrator Agent user interface:
be.engine.jmx.connector.ssl=true
javax.net.ssl.keyStore=
<location of the keystore file>javax.net.ssl.keyStorePassword=
<password of the keystore file>See Adding a New System Property for an Instance for more details.
BusinessEvents Enterprise Administrator Agent side SSL configuration
BusinessEvents processing unit instance side configuration