Uploaded image for project: 'HPCC'
  1. HPCC
  2. HPCC-17247

using dafilesrv with tls/ssl

    XMLWordPrintable

    Details

    • Type: Improvement
    • Status: Resolved
    • Priority: Major
    • Resolution: Fixed
    • Affects Version/s: None
    • Fix Version/s: 6.4.0
    • Component/s: dafilesrv
    • Labels:
      None

      Description

      [r ~]# rpm -qa|grep hpcc
      hpccsystems-platform-6.2.4-1.x86_64
      We configured one of the training environments with TLS.
      STEPS

      1. Stopped all components including dafilesrv
      2. Generated key and cert on the box.

      *************************
      184 openssl genrsa -des3 -out /mnt/disk1/dafilesrv.key 2048
      188 openssl req -x509 -nodes -days 9999 -newkey rsa:2048 -keyout /mnt/disk1/dafilesrv.key -out /mnt/disk1/dafilesrv.crt
      ******************
      3. Uncommented and updated the following on the environment.conf

      #enable SSL for dafilesrv remote file access
      #dfsUseSSL=true
      #dfsSSLCertFile=/mnt/disk1/dafilesrv.cert
      #dfsSSLPrivateKeyFile=/mnt/disk1/dafilesrv.key

      4. Started all components.

      What we saw on the ECL watch was no activity information.

      Upon stopping components dali could not write to the backup location.

      It *looks* like it could not talk on port 7100.

        Attachments

          Issue Links

            Activity

              People

              • Assignee:
                mckellyln Mark Kelly
                Reporter:
                fuceta Fernando Uceta
              • Votes:
                0 Vote for this issue
                Watchers:
                3 Start watching this issue

                Dates

                • Created:
                  Updated:
                  Resolved: