- Big Data Platform
- Data Fabric
- Data Management Platform
- Data Services Platform
- MDM Platform
- Real-Time Big Data Platform
步骤
-
打开 <Tomcat>\conf\server.xml 文件。
-
注释掉非 SSL 部分:
<!-- <Connector port="8187" protocol="HTTP/1.1"
connectionTimeout="20000"
redirectPort="8550" /> -->
-
取消注释以下行:
<!-- <Connector port="8550"
protocol="org.apache.coyote.http11.Http11NioProtocol"
maxThreads="150"
SSLEnabled="true"
scheme="https"
secure="true"
clientAuth="false"
sslProtocol="TLS"/> -->
-
添加以下行:
keystoreFile="<certificate_path>/server.keystore.jks"
keystorePass="<certificate_password>"
-
打开 <Tomcat>\conf\data-quality.properties 文件。
-
要保护与 MongoDB 的连接,请编辑以下行:
dq.mongo.ssl=true
dq.mongo.ssl.trust-store=<path_to_truststore>
dq.mongo.ssl.trust-store-password=<truststore_password>
-
要仅使用通信加密来保护与 Kafka 的连接,请编辑以下行:
spring.cloud.stream.kafka.binder.configuration.security.protocol=SSL
spring.cloud.stream.kafka.binder.configuration.ssl.truststore.location=<path_to_truststore>
spring.cloud.stream.kafka.binder.configuration.ssl.truststore.password=<truststore_password>
-
要使用身份验证来保护与 Kafka 的连接,请编辑以下行:
spring.cloud.stream.kafka.binder.configuration.ssl.keystore.location=<path_to_keystore>
spring.cloud.stream.kafka.binder.configuration.ssl.keystore.password=<keystore_password>
spring.cloud.stream.kafka.binder.configuration.ssl.key.password=<key_password>
-
要保护与 Talend Identity and Access Management 的连接,请将下面的 URL 从 http 更改为 https:
oidc.url=https://<iam_url:port>/oidc
scim.url=https://<iam_url:port>/scim
请注意,还必须定义通信加密参数以使用身份验证。