VISULOX Certificates
VISULOX uses certificates for https services with the following modules:
- fx4
- transit
- webservice
SSL Certifcate handling for transit / webservice
During installation selfsigned ceritfcates are created for transit and webservice. The VISULOX PORTAL Certificates are no longer used.
These certificates
- are valid for 10 years
- are checked by integrity check
- have to be exchanged with already existing certificates
-- copy existing certificates to: /opt/visulox/etc/ssl/
-- use visulox config -name fileexchange.certfile=/keyfile/caFile to use the certificate
-- use visulox config -name fx4.certfile=/keyfile/caFile to use the certificate
-- use visulox config -name webservice.certfile=/keyfile/caFile to use the certificate
On VISULOX Nodes or if it is necessary to use other certificates on VISULOX Access Nodes, the keyfiles can be adjusted:
CODE
visulox config list -name keyfile
-----------------------------------------------------
| changed | key | value |
-----------------------------------------------------
| | fileexchange.keyfile | visulox.self.key |
| | fx4.keyfile | visulox.self.key |
| | webservice.keyfile | visulox.self.key |
-----------------------------------------------------The ports can be adjusted here:
CODE
visulox config list -name webservice.port,fx4.port,fileexchange.port
-----------------------------------------------------
| changed | key | value |
-----------------------------------------------------
| | fileexchange.port | |
| | fx4.port | |
| | webservice.port | 8114 |
-----------------------------------------------------
The keyfiles and the ports are global settings. To change these settings only on a single node, /opt/visulox/etc/service.conf has to be used.