This topic has 2 replies, 3 voices, and was last updated 6 years, 12 months ago by Rajesh R.

  • Author
    Posts
  • #4943
     steveatunfpa
    Participant

    [4] Whether the replication communication through the replication port is encrypted or not.

    My four node replicating setup all say false for this column. My command was:

    [[email protected]]# ./dsreplication enable –host1 host01.unfpa.org –port1 4444 –bindDN1 “cn=Directory Manager” –bindPassword1 password —

    replicationPort1 1388 –host2 host02.unfpa.org –port2 4444 –bindDN2 “cn=Directory Manager” –bindPassword2 password –replicationPort2 1388 —

    adminUID admin –adminPassword password –baseDN “dc=domain,dc=com” -X -n –connectTimeout 0

    Was there another option to ebale replication with encryption that I missed ?

    #5160
     Ludo
    Moderator

    Yes there is an option to enable encryption for replication.
    Note that once replication encryption is enabled for one or more servers, all replication traffic will be encrypted with all servers.

    dsreplication enable –help

    –secureReplication1
    Specifies whether or not the communication through the replication port of
    the first server is encrypted or not. This option will only be taken into
    account the first time replication is configured on the first server

    –secureReplication2
    Specifies whether or not the communication through the replication port of
    the second server is encrypted or not. This option will only be taken
    into account the first time replication is configured on the second server

    #5163
     Rajesh R
    Participant

    @steveatunfpa: If it helps in anyway, I’ve made a video demonstration on configuring encryption for OpenDJ replication:

    http://www.fedji.com/blogs/forgerock/forgerock-opendj-replication-enabling-encryption/

    I’m also using wireshark in the video log to monitor the network traffic between two OpenDJ servers.

Viewing 3 posts - 1 through 3 (of 3 total)

You must be logged in to reply to this topic.

©2022 ForgeRock - we provide an identity and access platform to secure every online relationship for the enterprise market, educational sector and even entire countries. Click to view our privacy policy and terms of use.

Log in with your credentials

Forgot your details?