SSL/TLS Settings


Figure: TLS Settings

The SSL / TLS Settings page provides an SSL / TLS configuration for the APINIZER platform. TLS configurations are initiated by selecting the Enable TLS and Enable TLS parameters for the Log Server.

SSL/TLS Settings

  • Keystore: Keystore file. JKS and PKCS12 formats are supported.
  • Keystore Password: Enter password for the keystore. Leave empty if there is no password.
  • Truststore: Truststore file. JKS and PKCS12 formats are supported.
  • Truststore Password: Enter password for the truststore. Leave empty if there is no password.
  • HTTP Enabled: Check if you want to enable HTTP access in addition to HTTPS. An example scenario: You can restrict access to HTTP port on firewall for outer clients. They will be allowed to access APINIZER via HTTPS only while inner clients can access APINIZER via HTTP.

Truststore: Used for certificate validation. Provides certificate validation by hosting root and intermediate certificates of the certificate to be verified.

Figure: Log TLS Settings

TLS Settings for Log Instance

  • Enable TLS for Log Instance: Check to enable TLS for Log Instance. If TLS is enabled for Log Instances, certificates will be uploaded to the paths but management will be disabled because of Elastic Search Enterprise license permissions.
  • Keystore for Log Instance: Keystore file for Log Instance. JKS and PKCS12 formats are supported.
  • Keystore Password for Log Instance: Enter password for the keystore for Log Instance. Leave empty if there is no password.
  • Truststore for Log Instance: Truststore file for Log Instance. JKS and PKCS12 formats are supported.
  • Truststore Password for Log Instance: Enter password for the truststore for Log Instance. Leave empty if there is no password.

Before TLS is enabled/disabled all instances must be STOPPED! And After enabling/disabling TLS, Apinizer Manager must be restarted!