Skip to main content Skip to complementary content

Configuring the SSL Keystore (optional)

You can choose another Keystore if needed.

About this task

To override the existing Keystore file, you must:
  1. Generate a new Keystore with the utility tool called Keytool (Key and Certificate Management Tool).
  2. Set the new Keystore location.
  3. Enable the SSL Keystore at server side.

Generate a Keystore

Procedure

  1. Open the terminal and change directory to <root>/keystores where <root> is the Talend JobServer path.
  2. Type in keytool -genkey -keystore <myKeystoreName> -keyalg RSA where <myKeystoreName> refers to the name of the Keystore you are creating.
    In the command interface, you are prompted to enter the keystore password twice.
  3. Enter the password for your Keystore twice, then enter the other optional information, such as your name, the name of your organization, or your state, if needed.
  4. Type in yes to confirm your information.
  5. Type in the password you have previously defined. The new Keystore file has been created in <root>/keystores.

Set the location of the new Keystore

To set the new Keystore location, you can either edit the JAVA_OPTS environment variable or edit the launching script of the Talend JobServer.

Procedure

  1. Edit the JAVA_OPTS environment variable
  2. Add the following lines: 
    -Djavax.net.ssl.keyStore=/<myDirectory>/<myKeystore>
-Djavax.net.ssl.keyStorePassword=<myPassword>
    In those lines, <myDirectory> is the installation directory of your Keystore, <myKeystore> is the name of your Keystore and <myPassword> is the password you have previously defined for your Keystore.
    If you have not created the JAVA_OPTS environment variable yet, you must create it before completing this procedure.
    You can also set the location of the new Keystore in the start_rs.sh file as shown in the following capture:

Configure the service

Procedure

Edit an init script with start and stop commands as described in Installing Talend JobServer as a service on systemd-based Linux systems.

What to do next

Enable Secure Sockets Layer as described in Enabling the SSL encryption in Talend Runtime.

Did this page help you?

If you find any issues with this page or its content – a typo, a missing step, or a technical error – please let us know!

Leave your feedback here