16.10 - Toggling SSL or TCP after Installation - Data Stream Extensions

Data Stream Extensions Installation, Configuration, and Upgrade Guide for Customers

prodname
Data Stream Architecture
Data Stream Extensions
vrm_release
16.10
created_date
August 2017
category
Configuration
Installation
featnum
B035-3151-087K
If you set up SSL or TCP after your DSA environment is already up and running, you can use toggle scripts on each client to switch to SSL or TCP without uninstalling and reinstalling. You also must remove and re-add the DSC Server in the BAR Setup portlet.
  1. Remove the DSC Server using the BAR Setup portlet (see Removing a DSC Server).
  2. To toggle SSL for each client component (DSC, DSARest, BARCmdline, and ClientHandler), run the toggle script on each client. ./ssl_jms_toggle.sh is located in each client's installed directory:
    • $DSA_DSC_ROOT
    • $BARCMDLINE_ROOT
    • $CLIENTHANDLER_ROOT
    Syntax: ssl_jms_toggle.sh [ DSC | DSARest | BARCmdline | ClientHandler ] [ tcp | ssl ] For example: ssl_jms_toggle.sh DSC ssl
    1. For ClientHandler, the script prompts you for the SSL keystore password. This is the client's keystore password.
    2. If the port number has changed, change the following parameters:
      Property File Parameter TCP SSL
      clienthandler.properties broker.port 61616 61617
      clienthandler.properties server.protocol TCP SSL
      dsc.properties broker.port 61616 61617
      dsarest.properties broker.port 61616 61617
      commandline.properties broker.port 61616 61617
  3. Add the DSC server using the BAR Setup portlet (see Adding a DSC Server), select SSL or TCP as the Broker Connectivity.
  4. From the BAR Setup portlet, select your DSC Server, and click Systems and Nodes under Categories.
  5. Select the system name under Systems, then System Details under Setup.
  6. To enable SSL, under SSL Communication:
    1. Check the Enable SSL over JMS Communication box.
    2. Enter the keystore password in the Truststore Password box.
    3. Click Apply, then follow on-screen instructions.
  7. To configure TCP, under SSL Communication:
    1. Clear the Enable SSL over JMS Communication box.
    2. Remove the keystore password from the Truststore Password box.
    3. Click Apply, then follow on-screen instructions.
  8. Restart the DSmain process on DSC server for the repository database cnsterm 6:
    1. Stop bardsmain: cnsterm 6 start bardsmain -s
    2. Start bardsmain: cnsterm 6 start bardsmain