Community in read only mode June 18 & 19
This community will be set in READ ONLY mode for a while on Tuesday June 18 into Wednesday June 19 while we import content and users from our Micro Focus Forums community site. MORE INFORMATION
Highlighted
igort Trusted Contributor.
Trusted Contributor.
262 views

(CSA) Support Tip: MPP to CSA/IDM communication via load balancer in HCM.08

Reviewing the MPP container, in mpp.json the 'strictSSL' attribute is set to 'true' in the 'provider' section so the 'ca' attribute would need to point to e.g. the LB certificate itself. In any case, if it is not the right certificate(s), secure communication between MPP and CSA via LB would fail. As we could not find a corresponding attribute in the YAML file controlling the 'strictSSL' value, we were searching for attributes in the YAML file that determine the value of the 'ca' attributes (in the 'provider' and also the 'idmProvider' sections in mpp.json), they are:

 

MPP_CSA_CA_CERTIFICATE

 this maps to the 'ca' attribute in 'provider'

MPP_IDM_CA_CERTIFICATE

 this maps to the 'ca' attribute in 'idmProvider'

 

So in our situation, we had to ensure the values of the above properties in the MPP YAML file were the path to the LB certificate in NFS.

0 Likes
The opinions expressed above are the personal opinions of the authors, not of Micro Focus. By using this site, you accept the Terms of Use and Rules of Participation. Certain versions of content ("Material") accessible here may contain branding from Hewlett-Packard Company (now HP Inc.) and Hewlett Packard Enterprise Company. As of September 1, 2017, the Material is now offered by Micro Focus, a separately owned and operated company. Any reference to the HP and Hewlett Packard Enterprise/HPE marks is historical in nature, and the HP and Hewlett Packard Enterprise/HPE marks are the property of their respective owners.