API Gateway: Enabling SSL Connection for Microsoft SQL JDBC Connection on Container Gateway
search cancel

API Gateway: Enabling SSL Connection for Microsoft SQL JDBC Connection on Container Gateway

book

Article ID: 264085

calendar_today

Updated On:

Products

CA API Gateway

Issue/Introduction

How to configure SSL JDBC connection for Microsoft SQL Server on Container Gateway environment on Kubernetes?

Environment

Release : 10.1

Resolution

Any Linux server with Java installed you can generate truststore.jks using keytool.

Here is the example, did with GKE to mount truststore.jks, sample files attached


git clone  https://github.com/CAAPIM/apim-charts   Pease read https://github.com/CAAPIM/apim-charts/blob/stable/charts/gateway/README.md
$ cd charts/gateway
$ mkdir truststore
$ cp truststore.jks to charts/gateway/truststore
$ creat a new file gw10.1-values.yaml (this is the file override the default values.yaml, including mounting truststore.jks to directory /opt/SecureSpan/Gateway/runtime/etc as example, customer can mount to other location as well)
$ create a new file kustomization.yaml ( this generate secret for truststore.jks)
$ create a new file namespace.yaml ( this defined the namespace belongs to me in GKE)
$ cd .. ( move to charts directory)
$ kubectl apply -k gateway  ( this generate secret/truststore-override-secret under namespace emilyz, make sure kubectl client is the version (1.24)  supports kustomization )
$ helm install testserver1-gw layer7/gateway -f gw10.1-values.yaml --set-file "license.value=/dev/CAAPIM/apim-charts/charts/license_10.xml" --set "license.accept=true"  (start Gateway Pod)


After the Gateway started, do the normal JDBC connection setup.

 

 

Additional Information

Existing KB article: https://knowledge.broadcom.com/external/article/236755/api-gateway-enabling-ssl-connection-for.html is Appliance/Software Gateway centric.

Although we have https://github.com/CAAPIM/apim-charts for container gateway, we don't have document for use case "how to mount truststore.jks for enabling SSL for JDBC connection."

Attachments

1681700686582__namespace.yaml get_app
1681700669295__kustomization.yaml get_app
1681700651631__gw10.1-values.yaml get_app