TLS considerations for TrueSight Capacity Optimization


In the TrueSight Capacity Optimization environment, there are various components that can communicate with each other in a secure manner using TLS 1.2. These components are as follows:

  • Application Server
  • ETL Engine Server (Local and Remote)
  • Database Server
  • Authentication Server
  • External Database
  • Presentation Server
  • Gateway Server
  • Capacity Agent

The following security architecture diagram shows an illustration of the product components and their connections.

Note: The arrow in the diagram indicates connection initiation request from client to server.

tls_diagram_11.5.png


The following operating systems and databases are supported for TLS communication:

Database requirements to communicate in TLS 1.2 mode

1 - Only supported as external database.

Operating system requirements to communicate in TLS 1.2 mode

You can enable TLS 1.2 on the supported communication channels after installing TrueSight Capacity Optimization. For more information, see Securing-communication-between-product-components.

For communication between the internal database and product components, you can optionally enable TLS 1.2 during installation. For more information, see Preparing for TLS enabled communication between internal database and product components.

 

Tip: For faster searching, add an asterisk to the end of your partial query. Example: cert*