Securing Monitoring Gateway Services

To secure an FTL monitoring gateway service (TIBCO® Messaging Monitor for TIBCO FTL® process), complete this task.

Before you beginAll FTL servers must be secure.

The enterprise authentication system must define usernames and associate them with appropriate FTL authorization groups.

Secure realm servers automatically use secure transports for the stream of monitoring data.

Procedure

Connect only to secure FTL servers using HTTPS.
When you supply the --ftlserver parameter on the gateway command line, specify a URL with HTTPS protocol.
Arrange authentication credentials to the FTL server.
Supply the location of the gateway's credentials as the value of the --password-file parameter on the gateway command line. Ensure that this file is protected from unauthorized access.
The username in the file must be in the authorization group ftl.
For further details, see TIBCO® Messaging Monitor for TIBCO FTL®.
For file syntax, see "Password File" in TIBCO FTL Administration.
Arrange trust in the FTL servers.
Arrange access to a copy of the FTL server trust file.
Supply the file location as the value of the --ftlserver-trust-file parameter on the gateway command line.
For further details, see "Trust File" in TIBCO FTL Administration.
Connect and arrange trust to TIBCO® Messaging Monitor for TIBCO FTL® .

Did you find this helpful?

Yes No