Disable HTTP (Optional)

NOTE:
Skip this section, if HTTP is not disabled in the previous release of Security Provider.
If HTTP is disabled in the previous release of Security Provider, perform the following steps:
  1. Open a terminal window and change the working directory to the scripts directory of the new build of Security Provider.
  2. Update the URI for the Security Provider in fta-setup-env file:
    • Open the fta-setup-env file from the new directory and update the URI.
      OR
    • Execute the following command to set the URI:
    set FTA_ENV_SECURITY_LOCAL_URL=https://<hostname>:9043/auth
    For example:
    set FTA_ENV_SECURITY_LOCAL_URL=https://nvussjcedge-pt3.ra-int.com:9043/auth
  3. Execute the following command to copy the truststore.jks file from the fta-security.old folder:
    $ sudo cp /opt/rockwell/fta-security.old/standalone/configuration/fta_truststore.jks /opt/rockwell/fta-security/standalone/configuration
  4. Execute the following commands to change the Java options to point to the truststore:
    NOTE:
    The below command is a single command appears in two lines. Please combine these two lines into a single line command and then execute the command.
    export JAVA_OPTS=-Djavax.net.ssl.trustStore=<path-to-truststore-file.jks>
    export JAVA_OPTS=-Djavax.net.ssl.trustStorePassword=<password>
    export KC_OPTS=-Djavax.net.ssl.trustStore=<path-to-truststore-file.jks>
    export KC_OPTS=-Djavax.net.ssl.trustStorePassword=<password>
Provide Feedback
Have questions or feedback about this documentation? Please submit your feedback here.