-
Notifications
You must be signed in to change notification settings - Fork 14
Generate Configuration Page
The "Generate Configuration" page is used to generate:
- A "Client Configuration" bundle that contains the files necessary for an OpenDXL Client to connect to the OpenDXL Broker.
- A "Broker Keystore" bundle that contains the keystore files necessary to provision another broker that will be a part of this fabric.
Select the type of bundle to generate from the "Configuration Type" dropdown.
The only required field in the form is Common Name
which is a human readable name that can be used to identify the certificate.
In the screenshot above, a certificate is being generated for use with the OpenDXL MaxMind Service. A common name of "maxmindservice" was selected to identity this certificate.
When Client Configuration
is selected in the Configuration Type
dropdown
and the Generate
button is pressed, a client configuration bundle named
opendxlclientconfig.zip
will be generated and downloaded. The bundle contains
the files necessary for an
OpenDXL Client to connect
to the OpenDXL Broker.
File | Description |
---|---|
dxlclient.config | Contains the information necessary for an OpenDXL Client to connect to the OpenDXL Broker. The information in this file includes the IP addresses/hosts and ports for the broker along with the locations of required PKI files. |
client.key | The private key for the OpenDXL Client. |
client.crt | The certificate for the OpenDXL Client. |
ca-broker.crt | The bundle of certificate authorities (CAs) for the broker. This bundle is used by an OpenDXL client to determine the authenticity of the broker that is being connected to. |
When Broker Keystore
is selected in the Configuration Type
dropdown and
the Generate
button is pressed, a broker keystore bundle named
opendxlbrokerkeystore.zip
will be generated and downloaded. The bundle
contains the keystore files necessary to provision another
broker that will be a part of this fabric.
File | Description |
---|---|
broker.crt | The private key for the new OpenDXL Broker. |
broker.key | The certificate for the new OpenDXL Broker. |
ca‑broker.crt | The bundle of certificate authorities (CAs) for the broker. This bundle is used by an OpenDXL client or broker to determine the authenticity of the broker that is being connected to. |
ca‑client.crt | The bundle of certificate authorities (CAs) for OpenDXL clients. This bundle is used by the broker to determine the authenticity of connecting OpenDXL clients. |
ca‑brokers.lst | This file contains a list of thumbprints for broker certificates and/or CAs that are used to validate that a broker establishing a bridge to this broker is authorized. (validate incoming connections) |
OpenDXL Broker
Configuration and Logging
- Overview (All files)
- Bridging Guide
- Configuration Files
- Policy Files
Internal Documentation
- Doxygen (Broker)
Management Console