CLI encryption setup - Windows client only

jobexecutor

For jobexecutor, create a properties file called jobexecutor.properties. In this example, you’ll need copies of the Spectrum self-signed certificates located on the server in the certs folder: node-keystore.p12 and node-keystore/truststore.p12. Copy those two files to a local directory, such as C:\myKeys.

# sample properties when using  a Spectrum self-signed cert 
spectrum.encryption.algorithm=JASYPT
spectrum.encryption.keystoreType=pkcs12 
spectrum.encryption.keystore=C:\\myKeys\\node-keystore.p12 
spectrum.encryption.keystorePassword=p*********s 
spectrum.encryption.keystoreAlias=spectrum 
spectrum.encryption.truststoreType=pkcs12 
spectrum.encryption.truststore=C:\\myKeys\\truststore.p12 
spectrum.encryption.truststorePassword=p*********s 
spectrum.encryption.truststoreAlias=spectrum 
spectrum.encryption.trustAllHosts=true 
spectrum.encryption.trustSelfSigned=true 
 

enableadmin

To use enableadmin with SSL enabled, you must create a properties file, similar to that used for jobexecutor: enableadmin.properties. Precisely provides this file in server/bin that points to the certificates in the server/conf/certs folder.

Those properties are:

# enable admin account properties
spectrum.encryption.algorithm=JASYPT 
spectrum.encryption.keystoreType=pkcs12
spectrum.encryption.keystore=../conf/certs/client-keystore.p12
spectrum.encryption.keystorePassword=p*********s
spectrum.encryption.keystoreAlias=spectrum-client
spectrum.encryption.truststoreType=pkcs12
spectrum.encryption.truststore=../conf/certs/truststore.p12
spectrum.encryption.truststorePassword=p*********s
spectrum.encryption.trustAllHosts=true
spectrum.encryption.trustSelfSigned=true