BusinessWare HTTPS Source Connector설정
create self-signed certificate
- server CA private key
openssl genrsa -aes256 -out server.cakey.pem
- server CA public key
openssl req -new -x509 -key server.cakey.pem -out root.crt
- server private key
openssl genrsa -out server.key
- server csr
openssl req -new -key server.key -out server.csr
- self-signed certificate server
openssl x509 -req -in server.csr -days 3650 -sha1 -CAcreateserial -CA root.crt -CAkey server.cakey.pem -out server.crt
rootCA manage (default passwd : changeit)
- view openssl x509 -noout -text -in [file] - list keytool -list -keystore $JAVA_HOME/jre/lib/security/cacerts - add keytool -importcert -alias [alias] -keystore $JAVA_HOME/jre/lib/security/cacerts -file [rootCA] - delete keytool -delete -alias [alias] -keystore $JAVA_HOME/jre/lib/security/cacerts
.vtparams
ssl_capath=/home/bwadmin/bw46/cert/CA/,
ssl_certificate=/home/bwadmin/bw46/cert/server.crt,
ssl_passphrase=mocomsys1$,
ssl_clientauth=false,
ssl_privatekey=/home/bwadmin/cert/server.key
#ssl_protocol=tlsv1.2
HTTPS Source Connector Properties
| Property | Name | Discription |
|---|---|---|
| HTTP Compression Type | OFF | |
| Protocol | BOTH | |
| HTTP Port | 19080 | |
| HTTPS Port | 19081 | |
| FIPS Mode | False | |
| Use APR | True | set true if Using SSL Protocol option |
| Max Threads | 20 | |
| Min Threads | 5 | |
| Max Keep Alive Requests | -1 | |
| Connectino Acceptance Count | 10 | |
| Connection Time Out | 5 | |
| Ciphers | Blank | |
| SSL Protocol | TLSv1.0 / TLSv 1.1/ TLSv1.2 | |
| Event Listener Class | Blank |