Securing the connection between Talend Data Preparation and Talend Identity and Access Management requires editing their corresponding configuration files.
You will first need to configure Talend Identity and Access Management as a service in HTTPS. Then, you will enable SSL communication between Talend Data Preparation and Talend Identity and Access Management running in HTTPS.
Before you begin
- Talend Data Preparation has been configured as a service in HTTPS. For more information, see Configuring an HTTPS connection for Talend Data Preparation.
- You have generated a certificate for Talend Data Preparation and Talend Identity and Access Management, and added it to your Web browser truststore.
- Make sure that you have the latest Apache Tomcat version installed.
To enable SSL to access the Talend Identity and Access Management server, add the following
lines to the <TDP_installation_path>/dataprep/start.bat
file if you are using Windows, or the
<TDP_installation_path>/dataprep/start.sh file if your
are using Linux.
-Djavax.net.ssl.trustStore=/path/to/<trust-store.jks> -Djavax.net.ssl.trustStorePassword=<trust-store password>
To enable SSL communication between Talend Data Preparation and Talend Identity and Access Management running in HTTPS, retrieve
the Talend Identity and Access Management certificate,
or its Certificate Authority, and add it to the Talend Data Preparation truststore using the
keytool -import -trustcacerts -alias <cert-alias> -file <IAM_certificate.crt> -keystore <truststore.jks>
file, add the following properties to set the truststore:
tls.trust-store=/path/to/<truststore.jks> tls.trust-store-password=<trust-store_password> false to disable hostname verification tls.verify-hostname=true
- Restart the services.
Your Talend Data Preparation instance running in HTTPS can now communicate with Talend Identity and Access Management, also running with a secured HTTPS connection.