Skip to main content Skip to complementary content

Configuring the SSL Keystore (optional)

You can choose another Keystore if needed.

About this task

To override the existing Keystore file, you must:
  1. Generate a new Keystore with the utility tool called Keytool (Key and Certificate Management Tool).
  2. Set the new Keystore location.
  3. Enable the SSL Keystore at server side.

Generate a Keystore

Procedure

  1. Open a command prompt and change directory to <root>\keystores where <root> is the Talend JobServer path.
  2. Type in keytool -genkey -keystore <myKeystoreName> -keyalg RSA where <myKeystoreName> refers to the name of the Keystore you are creating.
    In the command interface, you are prompted to enter the keystore password twice.
  3. Enter the password for your Keystore twice, then enter the other optional information, such as your name, the name of your organization, or your state, if needed.
  4. Type in yes to confirm your information.
  5. Type in the password you have previously defined. The new Keystore file has been created in <root>\keystores.

Set the location of the new Keystore

To set the new Keystore location, you can either edit the JAVA_OPTS environment variable or edit the launching script of the Talend JobServer.

Procedure

  1. Edit the JAVA_OPTS environment variable
  2. Add the following lines:
    -Djavax.net.ssl.keyStore=/<myDirectory>/<myKeystore>
    -Djavax.net.ssl.keyStorePassword=<myPassword>
    In those lines, <myDirectory> is the installation directory of your Keystore, <myKeystore> is the name of your Keystore and <myPassword> is the password you have previously defined for your Keystore.
    If you have not created the JAVA_OPTS environment variable yet, you must create it before completing this procedure.
    You can also set the location of the new Keystore in the start_rs.bat file as shown in the following code:
    rem set the JVM arguments here
    set MY_JVM_ARGS=-Dcom.sun.management.jmxremote -Djava.library.path="%MY_ROOT_PATH%sigar-bin\lin>"
    -Djavax.net.ssl.keyStore=/C:/Builds/Talend/jobserver/keystores/MyKeystore
    -Djavax.net.ssl.keyStorePassword=

Configure the service

Procedure

  1. Open the jsl_static64.ini file to edit it.
    Sample of the content of the jsl_static64.ini file.
  2. Add two parameters holding the same values you have added to the start_rs.bat file:
    -Djavax.net.ssl.keyStore=\<myDirectory>\<myKeystore>
    -Djavax.net.ssl.keyStorePassword=<myPassword>
  3. Update the number in the first line: as you have now eight parameters, type in 8.

What to do next

Enable Secure Sockets Layer as described in Enabling the SSL encryption in Talend Runtime.

Did this page help you?

If you find any issues with this page or its content – a typo, a missing step, or a technical error – please let us know!