Versions Compared

Version Old Version 6 New Version Current
Changes made by

Chooi San Chong

Chooi San Chong

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

The   mzsh keytool enable-tls command from the Enable One-way SSL On RCP section will automatically configure these the properties listed below in the Platform container automatically , except property pico.rcp.tls.require_clientauth. You can also manually change the value of this propertythese properties.

Do a  mzsh topo open container to view the platform container.conf.

...

Code Block
languagetext
$ mzsh topo set 'topo://container:<container>/val:common."pico.rcp.tls.keystore"' <keystore path>

Example command:

Code Block
languagetext
$ mzsh topo set 'topo://container:platform/val:common."pico.rcp.tls.keystore"' $MZ_HOME/keys/keystore.p12
Info

Note: Full Path to the keystore file is required.

...

Code Block
languagetext
$ mzsh topo set 'topo://container:<container>/val:common."pico.rcp.tls.keystore.alias"' <alias>

Example command:

Code Block
languagetext
$ mzsh topo set 'topo://container:platform/val:common."pico.rcp.tls.keystore.alias"' platform

pico.rcp.tls.keystore.password

Use this property to set the keystore password, which is the password we entered while creating keystore.

...

Code Block
languagetext
$ mzsh topo set 'topo://container:<container>/val:common."pico.rcp.tls.keystore.password"' \ 
`mzsh encryptpassword <password>`

Example command:

Code Block
languagetext
$ mzsh topo set 'topo://container:platform/val:common."pico.rcp.tls.keystore.password"' \ 
`mzsh encryptpassword dr`

pico.rcp.tls.key.password

...

Code Block
languagetext
$ mzsh topo set 'topo://container:<container>/val:common."pico.rcp.tls.key.password"' \ 
`mzsh encryptpassword <password>`

Example command:

Code Block
languagetext
$ mzsh topo set 'topo://container:platform/val:common."pico.rcp.tls.key.password"' \ 
`mzsh encryptpassword dr`

pico.rcp.tls.require_clientauth

This property is used if client authentication (two-way authentication) is required. The default value is false. Refer Enable Two-way SSL On RCP

Code Block
languagetext
$ mzsh topo set 'topo://container:<container>/val:common."pico.rcp.tls.require.clientauth"' true

Example command:

Code Block
languagetext
$ mzsh topo set 'topo://container:platform/val:common."pico.rcp.tls.require.clientauth"' true

Note

Restart Required

After the configuration is done all affected processes need to be restarted. Use the following command:

Code Block
mzsh restart platform ec
Scroll ignore
scroll-viewporttrue
scroll-pdftrue
scroll-officetrue
scroll-chmtrue
scroll-htmltrue
scroll-docbooktrue
scroll-eclipsehelptrue
scroll-epubtrue

Next:

4.2.2 HTTP Encryption