Administration Guide > TDV and SSL Authentication > Setting Up SSL > Setting Up Authentication between Studio and the TDV Server
 
Setting Up Authentication between Studio and the TDV Server
The encryption_util.bat can be used to update the authentication between Studio and the TDV Server. The utility will change and encrypt all the passwords for all the Studio installs in your environment.You must continue to use the keytool to update the passwords on the TDV Server.
If you decide not to use the encryption_util, you need to configure the JKS digital certificate that you intend to use for secured Web services and secured JDBC communications. The JKS digital certificate initiates and establishes SSL communication over HTTPS and LDAP ports.
If a truststore location is not specified, search for a keystore file in the following locations:
<TDV_install_dir>/jdk/conf/security/jssecacerts
<TDV_install_dir>/jdk/conf/security/cacerts
Assumptions
TDV assumes that all passwords stored in all the keystore and truststore files are the same.
To use encryption_util.bat to validate Studio side authentication password is valid
1. On the Windows machine where Studio is installed, locate the encryption_util.bat script.
2. Use a command window to run the script using the following command:
encryption_util.bat -studioKeyStoreVerify
To use encryption_util.bat to update Studio side authentication
1. On the Windows machine where Studio is installed, locate the encryption_util.bat script.
2. Use a command window to run the script using the following command:
encryption_util.sh -toolsKeyStore -keyStorePassword somepassword -trustStorePassword somepassword -keyStoreChange
To configure SSL between Studio and the TDV Server
1. Obtain a JKS digital certificate from a Certificate Authority, or generate your own using keytool.
2. For Studio authentication to TDV, add the certificate to these files:
<TDV_install_dir>/conf/server/security/cis_server_truststore.jks
<TDV_install_dir>/conf/studio/security/cis_studio_truststore.jks
 
3. In Studio, and select Administration > Launch Manager (Web) to open the TDV Manager Web interface.
4. Log in to Manager.
5. In Manager, choose CONFIGURATION > SSL to display the SSL MANAGEMENT page.
6. In the New Value column next to Java Keystore File Location, enter the full path to the new JKS file on the server.
 
7. Click APPLY.
The REVERT button recovers the current value.
8. Change the Java Keystore File Type and the Java Keystore Password so that their values when the server restarts match the digital certificate being installed.
9. Change the passwords of the TDV Server and Studio truststores:
<TDV_install_dir>\jdk\bin\keytool.exe -storepasswd -new <your_password> -keystore <TDV_install_dir>/conf/server/security/cis_server_truststore.jks
<TDV_install_dir>\jdk\bin\keytool.exe -storepasswd -new <your_password> -keystore <TDV_install_dir>/conf/studio/security/cis_studio_truststore.jks
 
10. Restart the TDV Server to load the keystore and apply the changes.