How to setup SSL access to external datasources from TIBCO Data Virtualization?
Article ID: KB0076969
Updated On:
| Products | Versions |
|---|---|
| TIBCO Data Virtualization | All supported versions |
Description
How to setup SSL access to external datasources from TIBCO Data Virtualization?
Issue/Introduction
This discusses the exceptional placement of an SSL certificate for certain types of datasources.
Resolution
If you are using specifically one of the datasource adapters in TDV v7.0.x that are listed under our installations's <install dir>/packages, there is an exception as to where you place their certificate, in order for TDV to access that datasource over an outbound SSL connection.
Normally in pre-v8.0 installations, we have a separate 'datasource' and a 'server' truststore file as seen here:
<install dir>/conf/server/security/cis_server_truststore_strong.jks
<install dir>/conf/server/security/cis_datasource_truststore_strong.jks
In TDV v7.0.x, you need to place the certificate in the cis_server_truststore_strong.jks file, not the cis_datasource_truststore_strong.jks file.
This is different from what you may have done for other SSL protected datasources (ie; the ones you see listed under /conf/adapters/system)
The adapters that you see named under <install dir>/packages are developed on a different platform, hence this exception to the rule. Furthermore, in TDV v8.0, the server & datasource truststore files will be merged into a single file, as will the server & datasource keystore files, thus superseding the instructions above that is intended for TDV v7.0.x.
Normally in pre-v8.0 installations, we have a separate 'datasource' and a 'server' truststore file as seen here:
<install dir>/conf/server/security/cis_server_truststore_strong.jks
<install dir>/conf/server/security/cis_datasource_truststore_strong.jks
In TDV v7.0.x, you need to place the certificate in the cis_server_truststore_strong.jks file, not the cis_datasource_truststore_strong.jks file.
This is different from what you may have done for other SSL protected datasources (ie; the ones you see listed under /conf/adapters/system)
The adapters that you see named under <install dir>/packages are developed on a different platform, hence this exception to the rule. Furthermore, in TDV v8.0, the server & datasource truststore files will be merged into a single file, as will the server & datasource keystore files, thus superseding the instructions above that is intended for TDV v7.0.x.
Feedback
Yes
No
Powered by
