Configuring One-way SSL between Administrator Agent and Processing Unit Instance

To enable one-way SSL authentication, configure SSL properties in the BusinessEvents Enterprise Administrator Agent as well as BusinessEvents processing unit instances.

Procedure

BusinessEvents Enterprise Administrator Agent side SSL configuration

  1. Add the following properties to the be-teagent.tra file:
    • java.property.javax.net.ssl.trustStore=<location of the truststore file>
    • java.property.javax.net.ssl.trustStorePassword=<password of the truststore file>
    Note: Ensure that all BusinessEvents instances public certificates are stored in a single trust store.
    To do this, you can also use the keytool utility as follows:
    keytool -import -alias pu1 -file <pu1 certificate> -keystore <path to mytruststore>
    keytool -import -alias pu2 -file <pu2 certificate> -keystore <path to mytruststore>

    Where, pu1 and pu2 are two BusinessEvents processing unit instances.

BusinessEvents processing unit instance side configuration

  1. Add the following System Properties for each processing unit instance using the BusinessEvents Enterprise Administrator Agent user interface:
    • be.engine.jmx.connector.ssl=true
    • javax.net.ssl.keyStore= <location of the keystore file>
    • javax.net.ssl.keyStorePassword=<password of the keystore file>