Custom integration for Secure Socket Layer (SSL) communication - 7.3

Talend Data Catalog Installation and Upgrade Guide for Windows

author
Talend Documentation Team
EnrichVersion
7.3
EnrichProdName
Talend Big Data Platform
Talend Data Fabric
Talend Data Management Platform
Talend Data Services Platform
Talend MDM Platform
Talend Real-Time Big Data Platform
task
Installation and Upgrade
EnrichPlatform
Talend Data Catalog

SSL is primarily used for HTTPS secure communications from the Web browser clients to the Talend Data Catalog Server itself. Such common HTTPS setup can be fully achieved with the Setup utility.

Note: You do not have to perform these steps below as the following steps are provided for illustration purpose only, describing what the Setup utility already performs automatically.

If you want to use a different certificate, follow these steps.

Procedure

  1. In the server.xml file, change the referenced connector entry parameters (keystoreFile and keystorePass) to point to the correct keystore file and password.
  2. Import that certificate into the JRE used by this tomcat. The default JRE is located under <TDC_HOME>\TalendDataCatalog\jre.
  3. Use the following commands:
    cd <TDC_HOME>\TalendDataCatalog\jre\lib\security
    move jssecacers jssecacers.old
    <TDC_HOME>\TalendDataCatalog\jre\bin\keytool -importkeystore -srckeystore {your_keystore} -keystore jssecacerts
    <TDC_HOME>\TalendDataCatalog\RestartServerApplication.bat
    <TDC_HOME>\TalendDataCatalog\RestartServerService.bat
    

    After the configuration, use the default URL to access Talend Data Catalog, https://localhost:11480/MM.

    You can also use the ports specified in the server.xml file. For example:
    <Connector port="11480" maxThreads="200"
        scheme="https" secure="true" SSLEnabled="true"
        keystoreFile="conf\keystore" keystorePass="changeit"
        clientAuth="false" sslProtocol="TLS" />