-
Task
-
Resolution: Done
-
Medium
-
Honolulu Release
-
None
Updating TLS Certificates for Message-router.
Following changes are required after adding the AAF init container to Kafka and MR charts
- In Kafka and MR charts, Remove the existing volume creation from configmap for the cadi.properties and update the cadi volume mount with the volume create from the AAF init container. Make sure the name cadi.properties is retained in Kafka charts
- In MR charts, Mount the following files (By creating configmap and volume)to /appl/dmaapMR1/bundleconfig/etc/sysprops/ sys-props.properties and /appl/dmaapMR1/etc/ajsc-jetty.xml
Refer Step 4 and 5 for the changes required in the sys-props.properties and ajsc-jetty.xml
- In MR charts, mount the cert password file generated by the AAF init container to /appl/dmaapMR1/bundleconfig/etc/sysprops. (MR converts these as system properties while starting the server)
- In sys-props.properties , add the property cadi_prop_files=<full path of cadi properties>. This step is not required. If the cadi.properties is mounted to /appl/dmaapMR1/etc/cadi.properties
- In ajsc-jetty.xml you may hardcode the KeyStorePath or add it as system properties in step 4. Set the KeyStorePassword and KeyManagerPassword from properties set in step 3
- clones
-
-
- Closed
-
-
DMAAP-1546 Updating TLS Certificates for Message-router
-
- Closed
-
- is duplicated by
-
-
- Closed
-