TLS considerations for TrueSight Capacity Optimization
In the TrueSight Capacity Optimization environment, there are various components that can communicate with each other in a secure manner using TLS 1.2. These components are as follows:
- Application Server
- ETL Engine Server (Local and Remote)
- Database Server
- Authentication Server
- External Database
- Presentation Server
The following security architecture diagram shows an illustration of the product components and their connections.
Note: The arrow in the diagram indicates connection initiation request from client to server.
TLS 1.2 is not supported for communication channels that involve Gateway Server and Capacity Agents.
You can enable TLS 1.2 on the supported communication channels after installing TrueSight Capacity Optimization. For more information, see Securing communication between product components.
For communication between the internal database and product components, you can optionally enable TLS 1.2 during installation. For more information, see Preparing for TLS enabled communication between internal database and product components.