Forum Discussion

Employee

8 years ago

Snaplex nodes running with customer signed SSL certificate - default SnapLogic SSL certificate selected and returned by server during SSL handshake

We have configured our Snaplex nodes to run with a customer signed SSL certificate. We use the FQDN in the certificate. The default SnapLogic SSL certificate is not in the JCC’s keystore (jcc.serverk...

General Information

christwr

Contributor III

8 years ago

Cool, thanks for the update Paul!

Did you guys also reconfigure the ciphers? I had a case open with SL a while back about it, with a response to tweak the jcc.ssl.excluded_ciphers property, but personally hadn’t messed with it yet.

PSAmmirata

Employee

8 years ago

We didn’t need to use the jcc.ssl.excluded_ciphers property. By default the FeedMaster uses port 8089 for the message broker. This conflicted with Splunk so we needed to change the port number for the message broker. This is documented in the Snaplex configuration options documentation.

jcc.broker_service_uri = ssl: //0.0.0.0:8089?transport.enabledProtocols=TLSv1,TLSv1.1,TLSv1.2&transport.enabledCipherSuites=TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256,TLS_RSA_WITH_AES_128_CBC_SHA256,TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA,TLS_RSA_WITH_AES_128_CBC_SHA

Forum Discussion

Snaplex nodes running with customer signed SSL certificate - default SnapLogic SSL certificate selected and returned by server during SSL handshake

Recent Discussions

Customer/Partner Awards Survey

[EMEA] AWS Summit – Berlin, MAY 4, 2023

[Virtual (France)] CRiP Matinale Low Code/No Code, April 20, 2023

[EMEA] Hub Day Data & AI for Business – Paris, APRIL 18 - 19, 2023

[EMEA] FIMA Connect – London, APRIL 18 - 19, 2023