This topic provides instructions on enabling security for the Collection Station, as follows:
Note
If you want to secure the Collection Station scaled out on separate remote nodes, then after installing the Collection Station on each of the remote nodes, ensure that you copy the KeyStore that you generated on the server with the first Collection Station instance in your environment.
Locate the flume.conf file and open it in a text editor and set the directory path to the TrustStore that you generated earlier by adding the following lines:
a1.sinks.k1.ssl = true
a1.sinks.k1.truststore = <TrustStoreLocationPath>
a1.sinks.k1.truststore-password = <TrustStorePassword>
a1.sinks.k1.truststore-type = JKS
where,
<TrustStoreLocationPath>
refers to the absolute path of the TrustStore location. On Windows, this path must be specified in the UNIX-style syntax (with forward slashes). For example, %PATROL_HOME%\bww\udc\conf.
<TrustStorePassword>
refers to the password that you provided while generating the TrustStore.
Save your changes.
Set the directory path to the KeyStore that you generated earlier by adding the following lines:
a1.sources.r1.ssl=true
a1.sources.r1.keystore=<KeyStoreLocationPath>
a1.sources.r1.keystore-password=<KeyStorePassword>
a1.sources.r1.keystore-type = JKS
where,
KeyStoreLocationPath
refers to the absolute path of the KeyStore location. On Windows, this path must be specified in the UNIX-style syntax (with forward slashes). For example, C:/Program Files/BMC Software/TrueSight/ITDA.
KeyStorePassword
refers to the password that you provided while generating the KeyStore.
Add the property, stationprotocol=https
.
Save your changes.
stationprotocol=https
keystoreFilePath=<KeyStoreLocationPath
>keystoreFilePassword=<KeyStorePassword
><KeyStoreLocationPath>
refers to the directory path where the KeyStore is located. On Windows, this path must be specified in the UNIX-style syntax (with forward slashes) and with a forward slash at the beginning of the path.<KeyStorePassword>
refers to the KeyStore password that you provided while generating the KeyStore.Save your changes.