Steps to turn on SSL and add a certificate on an existing GPCC instance
search cancel

Steps to turn on SSL and add a certificate on an existing GPCC instance

book

Article ID: 295252

calendar_today

Updated On:

Products

VMware Tanzu Greenplum Pivotal Data Suite Non Production Edition VMware Tanzu Data Suite VMware Tanzu Data Suite Greenplum

Issue/Introduction

This KB will describe methods to change a Greenplum Commands Center (GPCC) instance to be secured by encrypting network traffic between the web server and users’ browsers,

Resolution

  • Option 1:

    1. Create a file containing a certificate and private key as described in Securing Greenplum Command Center
      • Note: The private key file should not be password protected/encrypted.
    2. Stop GPCC with "gpcc stop"
    3. Modify the file ${GPCC_HOME}/conf/app.conf with the following parameters:
    # Modify the following:
EnableHTTP = false
EnableHTTPS = true

#Comment out or remove the httpport parameter
#httpport        = 28080

# Add the following parameters with valid values
HTTPSPort        = <Port for client connections>
HTTPSCertFile   = <path_to_certificate_and_key_file>
HTTPSKeyFile    = <path_to_certificate_and_key_file>
    1. Start GPCC: gpcc start

    Option 2:

    1. Stop GPCC: gpcc stop
    2. Create a file containing a certificate and private key as described in Securing Greenplum Command Center
      • Note: The private key file should not be password protected/encrypted.
    3. Re-run the installation script "gpccinstall-x.x.x". Enabling SSL/TLS. There is no requirement to delete the current installation.
    4. Start GPCC: gpcc start



Powered by Wolken Software