Configuring the PATROL Agent to enable TLS 1.2

By default, the PATROL Agent communicates using either Transmission Control Protocol (TCP) or Secure Sockets Layer (SSL) protocol. You can configure PATROL Agents to enable TLS 1.2 mode. 

The following process workflow guides you to configure the PATROL Agent to Integration Service communication to be TLS compliant:

1. Ensure that the signed certificates are generated for the Integration Service and imported into the PATROL Agent's client DB certificate store. 
   To generate signed certificates for the Integration Service, see  Implementing private certificates in the Integration Service .
   
   
2. Ensure that the PATROL Agent and the TrueSight Integration Service are running at the same security level.
   • To change the PATROL Agent's security level, see Changing the PATROL Agent's security level.
   • To change the Integration Service's security level, see Changing the Integration Service's security level.
     
     
3. Configure the PATROL Agent to Integration Service communication to enable TLS mode.
   • Run the set_unset_tls command in the PATROL Agent
   • Run the set_unset_tls_is command in the Integration Service
     For details, see 

     Error rendering macro 'link-window'

     Failed to transform the HTML macro template for display. Nested message: The XML content could not be parsed. There is a problem at line 4, column 165. Parser message: Duplicate attribute 'href'. at [row,col {unknown-source}]: [4,165]

     .
     
     
4. Update the PATROL Agent's registry files. 
   For details, see Updating the PATROL Agent registry files. 
   
   
5. Update the Integration Service's registry files. 
   For details, see Updating the Integration Service registry files.

Where to go from here