Configuring the access list

Use the following access details to configure the access list.

About this task

Before querying the restful API, the sensor must authenticate with the ECC by using a user name, a password, and certificate. Those credentials are supplied to Agile Service Manager by using a new component type in Access List: Data Collectors. One of the supplied entries in the access details is a truststore with the ECC certificate.

The sensor uses the truststore to establish a secure, encrypted session with the ECC. It is created with the use of keytool, the Java key, and certificate management utility. Any computer system that has Java installed can be used to create such truststore. If such a computer system is not available, use the Java Runtime Environment (JRE) that is installed with the ECC.

You can find the ECC certificate in the following location, where key_alias is the key alias that is specified during ECC installation:
ecc_install_path/certificates/key_alias.cert

Procedure

  1. To create the truststore and import the certificate, run the following command. Enter the command on one line. 
    jre_path/bin/keytool -import -noprompt -alias key_alias 
-file certificate_path/key_alias.cert 
-keystore truststore_name -storepass truststore_passphrase -storetype JKS
    The following example shows a command that is run to create a truststore with the ze_sensor_truststore name and the Fa8asTek passphrase by using the ECC JRE.
    ecc_install_path/jre/jre/bin/keytool -import -noprompt 
-alias key_alias -file <ECC install path>/certificates/key_alias.cert 
-keystore ze_sensor_truststore -storepass Fa8asTek -storetype JKS
  2. Copy the truststore to the system where you configure the access list.
  3. In the Access Details window, select Data Collectors as the Component Type.
  4. Specify the access information of an ECC client with the Explorer role.
  5. Click SSL settings to import the ECC truststore file into Agile Service Manager.
    1. In the Upload truststore Certificate field, specify the truststore file.
    2. In the Passphrase field, specify the passphrase.
    3. Specify the SSL Type as JKS.
    4. Leave the Key Store fields empty.
  6. Click OK.