If you set up SSL or TCP after your DSA environment is already up and running, you can use toggle scripts on each client to switch to SSL or TCP without uninstalling and reinstalling. You also must remove and re-add the DSC Server in the BAR Setup portlet.
- Remove the DSC Server using the BAR Setup portlet (see Removing a DSC Server).
-
To toggle SSL for each client component (DSC, DSARest, BARCmdline, and ClientHandler), run the toggle script on each client.
./ssl_jms_toggle.sh is located in each client's installed directory:
- $DSA_DSC_ROOT
- $BARCMDLINE_ROOT
- $CLIENTHANDLER_ROOT
- For ClientHandler, the script prompts you for the SSL keystore password. This is the client's keystore password.
-
If the port number has changed, change the following parameters:
Property File Parameter TCP SSL clienthandler.properties broker.port 61616 61617 clienthandler.properties server.protocol TCP SSL dsc.properties broker.port 61616 61617 dsarest.properties broker.port 61616 61617 commandline.properties broker.port 61616 61617
- Add the DSC server using the BAR Setup portlet (see Adding a DSC Server), select SSL or TCP as the Broker Connectivity.
- From the BAR Setup portlet, select your DSC Server, and click Systems and Nodes under Categories.
- Select the system name under Systems, then System Details under Setup.
-
To enable SSL, under SSL Communication:
- Check the Enable SSL over JMS Communication box.
- Enter the keystore password in the Truststore Password box.
- Click Apply, then follow on-screen instructions.
-
To configure TCP, under SSL Communication:
- Clear the Enable SSL over JMS Communication box.
- Remove the keystore password from the Truststore Password box.
- Click Apply, then follow on-screen instructions.
-
Restart the DSMain process on DSC server for the repository database cnsterm 6:
- Stop bardsmain: cnsterm 6 start bardsmain -s
- Start bardsmain: cnsterm 6 start bardsmain