Page Comparison

The  mzsh keytool enable-tls command from Enable One-way SSL On HTTP will configure these properties in Platform container automatically. You can also manually change the value of this property.

Do a  mzsh topo open container to view the platform container.conf.

mz.httpd.security

This property is set to true (default value is false) to enable encryption.

Example value in container.conf:

"mz.httpd.security"=true

To set this property manually, run this command:

$ mzsh topo set 'topo://container:<container>/val:common."mz.httpd.security"' true

mz.httpd.security.keystore

This property is to set the keystore file path. If this property is not set, TLS will not be used. 

Example value in container.conf:

"mz.httpd.security.keystore"="/opt/mz/keys/keystore.p12"

To set this property manually, run this command:

$ mzsh topo set 'topo://container:<container>/val:common."mz.httpd.security.keystore"' <keystore path>

mz.httpd.security.keystore.password

Use this property to set the keystore password, which is the password we entered while creating keystore.

Example value in container.conf:

"mz.httpd.security.keystore.password"="DR_8.1_KEY-1-9E5885A757778BFB153C6C877A7D9A86"

To set this property manually, run this command:

$ mzsh topo set 'topo://container:<container>/val:common."mz.httpd.security.keystore.password"' \
`mzsh encryptpassword <password>`

mz.httpd.security.key.password

Use this property to set the password for the key, as chosen in keytool. By default, this is the same as the keystore password. (This is the default for keytool).

Example value in container.conf:

"mz.httpd.security.key.password"="DR_8.1_KEY-1-9E5885A757778BFB153C6C877A7D9A86"

To set this property manually, run this command:

$ mzsh topo set topo://container:<container>/val:common.mz.httpd.security.key.password \
`mzsh encryptpassword <password>`

mzsh restart platform