Custom integration for Secure Socket Layer (SSL) communication - 7.3

Talend Data Catalog Installation and Upgrade Guide for Linux

EnrichVersion
7.3
EnrichProdName
Talend Big Data Platform
Talend Data Fabric
Talend Data Management Platform
Talend Data Services Platform
Talend MDM Platform
Talend Real-Time Big Data Platform
EnrichPlatform
Talend Data Catalog
task
Installation and Upgrade

SSL is primarily used for HTTPS secure communications from the Web browser clients to the Talend Data Catalog Server itself. Such common HTTPS setup can be fully achieved with the Setup utility.

Note: You do not have to perform these steps below as the following steps are provided for illustration purpose only, describing what the Setup utility already performs automatically.

If you want to use a different certificate, follow these steps.

Procedure

  1. In the server.xml file, change the referenced connector entry parameters (keystoreFile and keystorePass) to point to the correct keystore file and password.
  2. Import that certificate into the JRE used by this tomcat. The default JRE is located under <TDC_HOME>/TalendDataCatalog/jre.
  3. Use the following commands:
    $ cd /opt/<TDC_HOME>/TalendDataCatalog/jre/lib/security
    $ mv jssecacers jssecacers.old
    $ /opt/<TDC_HOME>/TalendDataCatalog/jre/bin/keytool -importkeystore -srckeystore {your_keystore} -keystore jssecacerts
    $ sudo ./RestartServerApplication.sh
    

    After the configuration, use the default URL to access Talend Data Catalog, https://localhost:11480/MM.

    You can also use the ports specified in the server.xml file. For example:
    <Connector port="11480" maxThreads="200"
        scheme="https" secure="true" SSLEnabled="true"
        keystoreFile="conf\keystore" keystorePass="changeit"
        clientAuth="false" sslProtocol="TLS" />