After the initial installation of Common Services, there is no
verification for server certificates from communication partners when Common Services is the
SSL client. Therefore, to strengthen security, enable certificate verification immediately
so that all server certificates are verified and your environment is protected from threats
such as spoofing.
-
Log in to the management server as the root user.
If you log in as an ordinary user, use the sudo command to complete the following procedure as the root
user.
-
Change the following property file to enable server certificate
verification:
- Property file location
- /var/installation-directory-of-Common-Services/userconf/config_user.properties
For example, for an OVA install uses the following
file:
/var/opt/hitachi/CommonService/userconf/config_user.properties
- Setting
-
CS_PORTAL_SSL_CERTIFICATE_CHECK=true
-
Restart the Common Services service.
The SSL communication configuration is complete.