TIBCO Spotfire® Server and Environment - Installation and Administration

Automatically trusting new nodes

To speed up the process of adding nodes to your Spotfire implementation, you can configure the system so that all new nodes are automatically trusted by Spotfire Server, or you can limit the automatic trust to specific nodes. In combination with the automatic process for installing services and instances, administrators of large Spotfire implementations in private sub-nets can quickly scale up their system as needed.

Before you begin

  • Spotfire Server is installed and running.
  • In the firewall of the computers on which you are installing the node manager, open the ports that will be used for the node manager and the services.

Procedure

  1. Open a command line and export the active server configuration (the configuration.xml file) by using the export-config command; for additional information, see Executing commands on the command line.
  2. On the command line, enter one of the following commands:
    • To set up automatic trust for all new nodes in the Spotfire implementation: 
      config set-config-prop --name=security.trust.auto-trust.enabled --value=true
    • To limit automatic trust to certain nodes, enter one of the following commands: 
      • config set-config-list-prop --name=security.trust.auto-trust.allowed-hosts-config.allowed-host --item-name=allowed-host -v "localhost"
        where localhost should be replaced with the hostname of the node that will be automatically trusted. 
      • config set-config-list-prop --name=security.trust.auto-trust.allowed-hosts-config.allowed-ip-regexps --item-name=allowed-ip-regexp -v "127\.\d{1,3}\.\d{1,3}\.\d{1,3}" -v "0:0:0:0:0:0:0:1|::1"
        where 127\.\d{1,3}\.\d{1,3}\.\d{1,3} and 0:0:0:0:0:0:0:1|::1 are examples of regular expressions for the IP addresses of the nodes that will be trusted.
        Note: You can also specify a range of regular expressions. The following example allows any IP address between 203.0.113.0 and 203.0.113.255: 
        203\.0\.113\.\d{1,3}
  3. Import the configuration file back to the Spotfire database by using the import-config command.
  4. Restart the Spotfire Server service.

Results

When a new node that is enabled for auto-trust comes online and requests authorization from Spotfire Server, the server trusts the node automatically.
Copyright © Cloud Software Group, Inc. All rights reserved.