Configuring a secure connection with the NNMi system

This section describes how to configure the probe to securely connect to the NNMi system using HTTPS.

Use the following steps to prepare the probe for deployment:

  1. Identify the install $NnmInstallDir and data $NnmDataDir directories on the NNMi system. The location of these directories can be identified from the NNMi console under the following menu and tabs:

    Help --> System Information --> Server (Tab)

    The keystore and truststore files are located in the $NnmDataDir directory.

  2. Create a truststore file for the probe using the following keytool command:
    keytool -genkey -keyalg RSA -alias OMNIKEY -keystore /root/nnmi_truststore.jks -storetype jks -storepass password -validity 360 -keysize 2048
  3. Extract the NNMi certificate from the NNMi keystore using the following command:
    keytool -export -alias nnmi -keystore /root/nnm-key.p12 -storepass nnmkeypass -file /root/mynnm.cert
  4. Import the certificate into the probe truststore and copy the truststore file to the probe system using the following command:
    keytool -import -trustcacerts -alias nnmi -file /root/mynnm.cert -keystore /root/nnmi_truststore.jks
  5. Configure the following probe properties on the probe system:
    TrustStore           : '<path to truststore file>'
    TrustStorePassword   : '<truststore password>'
    TrustStoreType       : 'JKS'
    NNMAddress           : <NNMi hostname which matches the Common Name (CN) from the NNMi certificate>
    NNMPort              : 443
    NNMUserID            : '<username>'
    NNMPassword          : '<password>'