-
Determine if you want to use the default certificate or generate a new one:
- To use the default certificate, continue to the next step.
- To generate a new certificate, see Generating a Private Key and Certificate.
-
Make the following settings on the queen (note that these are the default settings for a new Aster Database installation). You can use http://<queen-ip-address>:2407/std/configflags.
You also need to configure the same settings on all the loader nodes if you want to enable SSL on Aster Loader and Exporter tools.
- disallowPeerWithoutCertificates=false
- sslCertificatePath=/home/beehive/certs/server.cert
- sslPrivateKeyPath=/home/beehive/certs/server.key
- sslFileType=1(A value of “1” means SSL_FILETYPE_PEM.)
- Ensure that secureWrites is set to false.
- Ensure that secureMuleServer is set to true.
- There is no need to set the trustedCAPath and trustedCAFileName parameters.