Enable TLS Encryption for the Topology API Server
Topology
API ServerEnable and configure TLS options for a secure connection between
Topology
and the client browser.Required roles: security administrator |
|---|
To complete the TLS configuration of the
Topology
API server, enable or configure the following parameters in the CUSOPTN(TPLSCONF) member. The CUSOPTN(TPLSCONF) member is allocated during the post-install configuration.- TOPO_USER
- Specifies the user ID that runs theTopologyAPI server STC procedure.
- TLS_ENABLE
- When YES, specifies that theTopologyAPI server uses TLS encryption (the HTTPS protocol) to authenticate and encrypt the connection between the server and the client browser.
- TLS_KEY_ALIAS
- Specifies the label of the signedTopologyAPI server certificate.
- TLS_KEYRING
- Specifies the name of theTopologykey ring that contains the signedTopologyAPI server certificate.
- TLSV13_ENABLE
- When YES, specifies that the TLS v1.3 is used for the encryption.Make sure that your system JDK is compatible with TLS v1.3.
Example: Sample CUSOPTN(TPLSCONF) Member Contents
The following sample member uses values that were used in the previous examples for the TLS configuration.
TOPO_USER=TPLSTC TOPO_PORT=10060 AUTH_METHOD=SAF TLS_ENABLE=YES TLS_ATTLS=NO TLS_KEY_ALIAS='Topology Certificate' TLS_KEYRING=TOPORING TLSV13_ENABLE=NO SAF_CLASS='CA$TPL'