The end of life (EOL) date for this module is on 31 January, 2020.

SSL on the client

Modifying configuration

To enable, add the following to openaccess.conf in the working directory of the client application:

akka.remote {
        enabled-transports = [akka.remote.netty.ssl]
        netty.ssl {
                enable-ssl = true
                hostname = localhost
                port = 0
                security {
                        key-store = "<path to keystore>"                        key-store-password = "<keystore password>"                        key-password = "<key password>"                        trust-store = "<path to truststore>"                        trust-store-password = "<truststore password>"                        protocol = "TLSv1"                        random-number-generator = "AES128CounterSecureRNG"                        enabled-algorithms = [TLS_RSA_WITH_AES_128_CBC_SHA]
                }
        }
}

                                

Note: The location and name of the file can be specified using -DakkaConfig=<custompath>.

Specifying SSL when connecting

Once enabled in the configuration, ssl transport must be specified in the URL to the cluster:

Connection conn = OpenAccess.connect("geneos.cluster.ssl://localhost:2551");

Or using the connection parameters:

Connection conn = OpenAccess.connect(ConnectionParametersBuilder.connectionParameters().ssl(true).address("localhost:2551").build());
                                