Page History
...
- The configuration file is located with the
sos-berlin.com/js7/agent/config_<port>/private
folder. - Consider that the above configuration has to be deployed to any Agent instances.
- Find below explanations about above configuration items relevant to Server Authentication with passwords.
Distinguished Names
Client Authentication
Controller Connections
For explanations see JS7 - Agent Configuration Items#js7-auth-users-Controller
Controller Connections
Code Block | ||||
---|---|---|---|---|
| ||||
js7 { auth { # User accounts for https connections users { # Controller account for connections by primary/secondary Controller instance Controller { distinguished-names=[ "DNQ=SOS CA, CN=controller-2-0-primary, OU=IT, O=SOS, L=Berlin, ST=Berlin, C=DE", "DNQ=SOS CA, CN=controller-2-0-secondary, OU=IT, O=SOS, L=Berlin, ST=Berlin, C=DE" ] } } } } |
Explanation:
...
Server Authentication
HTTPS Keystore and Truststore Locations
For explanations see JS7 - Agent Configuration Items#js7-web-https-keystore
Code Block | ||||
---|---|---|---|---|
| ||||
js7 {
web {
# keystore and truststore location for https connections
https {
keystore {
# Default: ${js7.config-directory}"/private/https-keystore.p12"
file=${js7.config-directory}"/private/https-keystore.p12"
key-password=jobscheduler
store-password=jobscheduler
}
truststores=[
{
# Default: ${js7.config-directory}"/private/https-truststore.p12"
file=${js7.config-directory}"/private/https-truststore.p12"
store-password=jobscheduler
}
]
}
}
} |
Signed Scheduling Objects
Locations of Public Keys and Certificates for Signature Verification
For explanations see JS7 - Agent Configuration Items#js7-configuration-trusted-signature-keys
Code Block | ||||||
---|---|---|---|---|---|---|
| ||||||
# Security configuration
js7 {
configuration {
# Locations of certificates and public keys used for signature verification
trusted-signature-keys {
PGP=${js7.config-directory}"/private/trusted-pgp-keys"
X509=${js7.config-directory}"/private/trusted-x509-keys"
}
}
|
Script Execution from Signed Workflows
For explanations see JS7 - Agent Configuration Items#js7-job-execution-signed-script-injection-allowed
Code Block | ||||||
---|---|---|---|---|---|---|
| ||||||
# Allow http connections without authentication
js7.job.execution.signed-script-injection-allowed = yes
|
...
Overview
Content Tools