Securing InfluxDB

To secure the InfluxDB server and its client connections, complete this task.

1. Obtain and install a certificate and private key for the InfluxDB server.
   Ensure that the private key file is protected from unauthorized access.
   InfluxDB uses this certificate to identify itself to its clients, including Grafana, and the FTL server.
2. Configure InfluxDB to for secure connections from its clients.
   1. In a text editor, open the configuration file influxdb.conf.
      The script that starts the FTL monitoring components uses the file in the location FTL_HOME/monitoring/influxdb/etc/influxdb/influxdb.conf.

      If you start the InfluxDB server independently, modify the corresponding configuration file in the appropriate location.

   2. Locate the http section.
   3. Set https-enabled=true.
   4. Set https-certificate to the location of the InfluxDB server's certificate.
   5. Set https-private-key to the location of the InfluxDB server's key file.
   For details see InfluxDB documentation.
3. Restart InfluxDB server.