Enabling server certificate verification

Ops Center Installation and Configuration Guide

Version
11.0.x
Audience
anonymous
Part Number
MK-99OPS001-23
After the initial installation of Common Services, there is no verification for server certificates from communication partners when Common Services is the SSL client. Therefore, to strengthen security, enable certificate verification immediately so that all server certificates are verified and your environment is protected from threats such as spoofing.
  1. Log in to the management server as the root user.
    If you log in as an ordinary user, use the sudo command to complete the following procedure as the root user.
  2. Change the following property file to enable server certificate verification:
    Property file location
    /var/installation-directory-of-Common-Services/userconf/config_user.properties

    For example, for an OVA install uses the following file:

    /var/opt/hitachi/CommonService/userconf/config_user.properties

    Setting
    CS_PORTAL_SSL_CERTIFICATE_CHECK=true
  3. Restart the Common Services service.
The SSL communication configuration is complete.