{"type":"doc","content":[{"type":"paragraph","content":[{"text":"If you prefer to use the Platform Container Keystore for all remote picos, follow these steps.","type":"text"}]},{"type":"heading","attrs":{"level":3},"content":[{"text":"Execution Context","type":"text"}]},{"type":"orderedList","attrs":{"order":1},"content":[{"type":"listItem","content":[{"type":"paragraph","content":[{"text":"Copy the keystore file that was created in ","type":"text"},{"text":"Enable One-way SSL On RCP","type":"text","marks":[{"type":"link","attrs":{"href":"https://infozone.atlassian.net/wiki/spaces/MD83/pages/451248692"}}]},{"text":" from the Platform Container to each of the Execution Containers. Place it in Execution Container ","type":"text"},{"text":"$MZ_HOME/keys","type":"text","marks":[{"type":"code"}]},{"text":".","type":"text"}]}]},{"type":"listItem","content":[{"type":"paragraph","content":[{"text":"Retrieve the properties keystore path, passwords and alias from Platform Container.","type":"text"}]}]}]},{"type":"panel","attrs":{"panelType":"info"},"content":[{"type":"paragraph","content":[{"text":"Commands retrieving the values from the Platform Container","type":"text","marks":[{"type":"strong"}]}]},{"type":"codeBlock","content":[{"text":"$ mzsh topo get --format data-only topo://container:/val:common.pico.rcp.tls.keystore\n$ mzsh topo get --format data-only topo://container:/val:common.pico.rcp.tls.keystore.password\n$ mzsh topo get --format data-only topo://container:/val:common.pico.rcp.tls.key.password","type":"text"}]},{"type":"paragraph","content":[{"text":"If aliases are used in the keystore, you can use this for retrieving the value of the alias used by the platform certificate.","type":"text"}]},{"type":"codeBlock","content":[{"text":"$ mzsh topo get --format data-only topo://container:/val:common.pico.rcp.tls.keystore.alias","type":"text"}]}]},{"type":"orderedList","attrs":{"order":3},"content":[{"type":"listItem","content":[{"type":"paragraph","content":[{"text":"Set these same properties in each Execution Container. Keystore passwords and alias should be same values as for the Platform Container.","type":"text"}]}]}]},{"type":"panel","attrs":{"panelType":"info"},"content":[{"type":"paragraph","content":[{"text":"Commands configuring keystore properties","type":"text","marks":[{"type":"strong"}]}]},{"type":"codeBlock","content":[{"text":"$ mzsh topo set 'topo://container:/obj:common.pico.rcp.tls' \\\n'{ keystore= }'\n$ mzsh topo set 'topo://container:/val:common.\"pico.rcp.tls.keystore.password\"' \\\n\n$ mzsh topo set 'topo://container:/val:common.\"pico.rcp.tls.key.password\"' \\\n","type":"text"}]},{"type":"paragraph","content":[{"text":"If aliases are used in the keystore, you can use this to configure the value of the alias.","type":"text"}]},{"type":"codeBlock","content":[{"text":"$ mzsh topo set 'topo://container:/val:common.\"pico.rcp.tls.keystore.alias\"' \\\n","type":"text"}]}]},{"type":"paragraph","content":[{"text":"Example,","type":"text"}]},{"type":"codeBlock","content":[{"text":"$ mzsh topo set 'topo://container:echost01/obj:common.pico.rcp.tls' \\\n'{ keystore=\"/opt/mz/keys/keystore.p12\" }'\n$ mzsh topo set 'topo://container:echost01/val:common.\"pico.rcp.tls.keystore.password\"' \\\n'DR_8.1_KEY-1-9E5885A757778BFB153C6C877A7D9A86'\n$ mzsh topo set 'topo://container:echost01/val:common.\"pico.rcp.tls.key.password\"' \\\n'DR_8.1_KEY-1-9E5885A757778BFB153C6C877A7D9A86'\n$ mzsh topo set 'topo://container:echost01/val:common.\"pico.rcp.tls.keystore.alias\"' \\\n1","type":"text"}]},{"type":"paragraph","content":[{"text":"Run ","type":"text"},{"text":"mzsh topo open container","type":"text","marks":[{"type":"code"}]},{"text":" to see the property:","type":"text"}]},{"type":"codeBlock","content":[{"text":"pico.rcp.tls.keystore=\"/opt/mz/keys/keystore.p12\"\n\"pico.rcp.tls.keystore.password\"=\"DR_8.1_KEY-1-9E5885A757778BFB153C6C877A7D9A86\"\n\"pico.rcp.tls.key.password\"=\"DR_8.1_KEY-1-9E5885A757778BFB153C6C877A7D9A86\"\n\"pico.rcp.tls.keystore.alias\"=\"1\"","type":"text"}]},{"type":"orderedList","attrs":{"order":4},"content":[{"type":"listItem","content":[{"type":"paragraph","content":[{"text":"In Platform Container, enable client authentication by setting the property ","type":"text"},{"text":"pico.rcp.tls.require_clientauth","type":"text","marks":[{"type":"code"}]},{"text":" to","type":"text"},{"text":" true","type":"text","marks":[{"type":"code"}]},{"text":".","type":"text"}]}]}]},{"type":"codeBlock","content":[{"text":"$ mzsh topo set topo://container:/val:common.pico.rcp.tls.require_clientauth true","type":"text"}]},{"type":"paragraph","content":[{"text":"Run ","type":"text"},{"text":"mzsh topo open container","type":"text","marks":[{"type":"code"}]},{"text":" to see the property:","type":"text"}]},{"type":"codeBlock","content":[{"text":"pico.rcp.tls.require_clientauth=\"true\"","type":"text"}]},{"type":"orderedList","attrs":{"order":5},"content":[{"type":"listItem","content":[{"type":"paragraph","content":[{"text":"Restart the Platform, followed by restarting the ECs.","type":"text"}]}]}]},{"type":"heading","attrs":{"level":3},"content":[{"text":"Legacy Desktop","type":"text"}]},{"type":"orderedList","attrs":{"order":1},"content":[{"type":"listItem","content":[{"type":"paragraph","content":[{"text":"Copy the keystore file that was created in ","type":"text"},{"text":"Enable One-way SSL On RCP","type":"text","marks":[{"type":"link","attrs":{"href":"https://infozone.atlassian.net/wiki/spaces/MD83/pages/451248692"}}]},{"text":" from the Platform Container to each of the desktop launcher client machine. ","type":"text"}]}]},{"type":"listItem","content":[{"type":"paragraph","content":[{"text":"When attempting to log in to the platform, the desktop launcher will display a window stating, 'Instance requires client authentication and no client key is available. Import Client Key?'.","type":"text"}]},{"type":"mediaSingle","attrs":{"layout":"center","width":459,"widthType":"pixel"},"content":[{"type":"media","attrs":{"width":459,"alt":"image-20250117-084206.png","id":"388e05dc-a1bd-48e3-9c94-e8b7c40d1187","collection":"contentId-451183154","type":"file","height":117}}]}]}]},{"type":"orderedList","attrs":{"order":3},"content":[{"type":"listItem","content":[{"type":"paragraph","content":[{"text":"Click Yes and browse to the keystore file location.","type":"text"}]}]},{"type":"listItem","content":[{"type":"paragraph","content":[{"text":"After clicking OK, you need to enter the keystore password.","type":"text"}]}]}]},{"type":"mediaSingle","attrs":{"layout":"align-start","width":258,"widthType":"pixel"},"content":[{"type":"media","attrs":{"width":409,"alt":"image-20250117-025417.png","id":"535bf025-fd7e-482f-acd3-4ebe991b55b3","collection":"contentId-451183154","type":"file","height":147}}]},{"type":"bodiedExtension","attrs":{"layout":"default","extensionType":"com.atlassian.confluence.macro.core","extensionKey":"scroll-ignore","parameters":{"macroParams":{"scroll-viewport":{"value":"true"},"scroll-pdf":{"value":"true"},"scroll-office":{"value":"true"},"scroll-chm":{"value":"true"},"scroll-html":{"value":"true"},"scroll-docbook":{"value":"true"},"scroll-eclipsehelp":{"value":"true"},"scroll-epub":{"value":"true"}},"macroMetadata":{"macroId":{"value":"dfdda03f-3a6b-471e-8129-37bc64236f7f"},"schemaVersion":{"value":"1"},"placeholder":[{"type":"icon","data":{"url":"https://scroll-exporter-extensions.us.exporter.k15t.app/static/assets/images/macro-icons/scroll-ignore.svg"}}],"title":"Scroll Ignore"}},"localId":"ce254f03-2761-4c11-81bc-c0f5dee386e4"},"content":[{"type":"table","attrs":{"layout":"default","width":1800.0,"localId":"a2694fe8-6685-441a-9385-3121be630888"},"content":[{"type":"tableRow","content":[{"type":"tableHeader","attrs":{"colspan":1,"rowspan":1},"content":[{"type":"paragraph","content":[{"text":"Next:","type":"text","marks":[{"type":"strong"}]}]}]}]},{"type":"tableRow","content":[{"type":"tableCell","attrs":{"colspan":1,"rowspan":1},"content":[{"type":"paragraph","content":[{"text":"4.2.1.2.2 Creating A New Keystore","type":"text","marks":[{"type":"link","attrs":{"href":"https://infozone.atlassian.net/wiki/spaces/MD83/pages/451183167"}}]},{"text":" ","type":"text"}]}]}]}]}]}],"version":1}

Browser not supported