Enable TLS Encryption for the
Topology
API Server

Enable and configure TLS options for a secure connection between
Topology
and the client browser.
Required roles: security administrator
To complete the TLS configuration of the
Topology
API server, enable or configure the following parameters in the CUSOPTN(TPLSCONF) member. The CUSOPTN(TPLSCONF) member is allocated during the post-install configuration.
TOPO_USER
Specifies the user ID that runs the
Topology
API server STC procedure.
TLS_ENABLE
When YES, specifies that the
Topology
API server uses TLS encryption (the HTTPS protocol) to authenticate and encrypt the connection between the server and the client browser.
TLS_KEY_ALIAS
Specifies the label of the signed
Topology
API server certificate.
TLS_KEYRING
Specifies the name of the
Topology
key ring that contains the signed
Topology
API server certificate.
TLSV13_ENABLE
When YES, specifies that the TLS v1.3 is used for the encryption.
Make sure that your system JDK is compatible with TLS v1.3.
Example: Sample CUSOPTN(TPLSCONF) Member Contents
The following sample member uses values that were used in the previous examples for the TLS configuration.
TOPO_USER=TPLSTC TOPO_PORT=10060 AUTH_METHOD=SAF TLS_ENABLE=YES TLS_ATTLS=NO TLS_KEY_ALIAS='Topology Certificate' TLS_KEYRING=TOPORING TLSV13_ENABLE=NO SAF_CLASS='CA$TPL'