When Creating an Adapter Instance (XtremIO), different levels of security can be configured. The least secure configuration is to leave the SSL Trust Store Path field in the Advanced Settings blank. In this configuration, the Management Pack will accept all SSL certificates. For added security, you can enable SSL by following the instructions below and entering the path to the truststore in the SSL Trust Store Path field in the Advanced Settings.
To add an SSL certificate to your vROps trustore:
- Obtain the SSL certificate for your XtremIO host server from your Internet browser. Export the certificate as an X.509 Certificate (PEM).
- Copy the certificate to your vROps machine.
- Use ‘ssh’ to log in to the vROps machine as the root user, then run the following command:
Linux:
$VCOPS_BASE/jre/bin/keytool -import -alias <product_alias> -file /tmp/<certfile> -keystore “$VCOPS_DATA_VCOPS/user/conf/ssl/tcserver.truststore” -storepass <truststore_password> -trustcacerts
Note: The <truststore_password> is generated by vROps and is located in /storage/vcops/user/conf/ssl/storePass.properties. Copy the password from the ssltruststorePassword= field and paste it in the <truststore_password> placeholder.Windows:
%VCOPS_BASE%\jre\bin\keytool -import -alias <product_alias> C:\path\to\certfile -keystore “%VCOPS_DATA_VCOPS%\user\conf\ssl\tcserver.truststore” -storepass <truststore_password> -trustcacerts
Parameter Descriptions:
- -alias is a unique name for each key that you add (per host)
- certfile is the location where the cert file was saved
- Run the reboot command to re-start the vROps machine for the changes to take effect.
