Create an application secret for your FTM installation on Red Hat OpenShift
You need to create a key-value secret that stores the credentials that are needed for your FTM installation. For example, you can store the credentials that are needed to access Db2®, the Control Center, and other components.
You can use the Red Hat® OpenShift® Container Platform user interface or the Red Hat OpenShift Container Platform command-line interface to create the application secret for FTM.
Create the secret by using the Red Hat OpenShift Container Platform user interface
The following instructions show how the cluster administrator can use the Red Hat OpenShift Container Platform
user interface to create the secret.
- Log in as an administrator to the cluster that you are deploying your FTM solution to.
- Connect to the namespace that you are using for your FTM installation.
- Create a key-value secret for the workloads of the namespace.
- Enter a name for the secret. For example,
ftm-application-secret
. You need to use this name when you create the instance for your FTM solution. - Enter configuration data for at least one key and value pair for the secret, such as the user ID to use for the database. For more information about the key names that are available for the FTM solutions, see Table 1.
- Click Add Key/Value to add more key and value pairs to this secret, as necessary.
- After you finish adding all your key and value pairs to the secret, click Create.
Create the secret by using the Red Hat OpenShift Container Platform command-line interface
The following instructions show how the cluster administrator can use the Red Hat OpenShift Container Platform command-line interface to create the secret.
- Log in as an administrator to the cluster that you are deploying your FTM solution to.
- Run the following command to switch to the namespace where FTM is installed.
Replace namespace with the appropriate
namespace.
oc project namespace
- Run the following command to create the secret. Replace the password variables in this
command with the correct passwords for your
installation.
For more information about the key names that are available for the FTM solutions, see Application secret keys for FTM.oc create secret generic ftm-application-secret \ --from-literal=DB_PASSWORD=password \ --from-literal=FXH_PASSWORD=password \ --from-literal=KSTORE_PASSWORD=password \ --from-literal=TSTORE_PASSWORD=password
Application secret keys for FTM
The keys that you can use to store application credentials in the secret for FTM
are shown in the following table.
Key name | Description |
---|---|
DB_PASSWORD |
Set the value of this key to the password for the FTM database. |
FXH_PASSWORD |
The user ID that is used to log on to the
Control Center is fxhadmin . Set the value of this key to the password that you want
to use for the fxhadmin user ID. |
KSTORE_PASSWORD |
This key is used by FTM deployment startups to create the personal certificate store inside the FTM containers that communicate over TLS. It is required only if TLS is enabled. The personal certificate store is key.p12, for example. |
TSTORE_PASSWORD |
This key is used by FTM deployment startups to create the trusted certificate store inside FTM containers that communicate over TLS. It is required only if TLS is enabled. The trusted certificate store is truststore.jks, for example. |