cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 

Data Power extension: Configure https requests to send certificates

Himanshu.Sarda
Builder

Hi,

 

I am trying to connect to an IBM Data Power server using the Appdynamics extension. However, I am getting an authentication failure when trying to connect to DP. The reason for the failure is that the request originating from the AppDyanmics monitor does not have a certificate in it. I tried finding any documentation regarding SSL set up for Data power monitors but unable to find any.

 

Can someone please guide me on how this can be configured?

 

Thanks.

8 REPLIES 8

Radhika.Puthiyetath
AppDynamics Team (Retired)

Hi @Himanshu.Sarda

 

Thanks for posting the query on the AppDynamics Community.

 

We are unable to locate the extension (IBM Data Power) you are referring to in the list of extensions listed in AppDynamics Exchange. To investigate further, request you to share exact name of the AppDynamics extension that you are using.

 

 

Bhuvnesh.Kumar
Moderator
Moderator

Hi Himanshu,

Please add the following fields to your config.yml file. 

Under the server you are trying to monitor, add the following field for SSL.

servers:
  - uri: http://localhost:5550/service/mgmt/current
    displayName: server1
    username: user
    password: welcome
    useSsl: true

sslTrustStorePath: "" # If not set, defaulted to machine-agent/conf/extensions-cacerts.jks. The prop "-Dappdynamics.extensions.truststore.path=/path/cacerts" takes precedence if set
sslTrustStorePassword: ""
sslTrustStoreEncryptedPassword: ""

 Do let us know if you face any further issues.

 

Thanks,

Bhuvnesh



Found something helpful? Click the Accept as Solution button to help others find answers faster.
Liked something? Click the Thumbs Up button.

Hi Bhuvanesh,

 

What is s"slTrustStoreEncryptedPassword" ? Is it mandatory to add this parameter ?

 

Thanks and Regards,

Himanshu.

Hi,

 

I tried adding the parameters to the file, but it does not look like the certificate is getting picked up. Do we have a way to determine from the logs the certificate which is being sent across ?

 

Below is the snapshot of the config.yml file, not sure if there is something which I might be missing. Can you please check if this looks fine to you or if there are any changes which needs to be made?

 

#This will create it in specific Tier. Replace <TIER_NAME>
metricPrefix: Server|Component:XXX-XXX|Custom Metrics|DataPower

servers:
- uri: https://xxxxxxxxxxx:5550/service/mgmt/current
displayName: XX
username: XXXXX
password: XXXXXXX
useSsl: true
sslTrustStorePath: "/opt/certs/cert.jks"
sslTrustStorePassword: "XXXX"
domains:
- default
- XXXXXX
- Platform
useBulkApi: true

- uri: https://XXXXX:5550/service/mgmt/current
displayName: XX
username: XXXXX
password: XXXXXX
useSsl: true
sslTrustStorePath: "/opt/certs/cert.jks"
sslTrustStorePassword: "changeit"
domains:
- default
- XXXXX
- Platform
useBulkApi: true

# - uri: https://someotherhost:5550/service/mgmt/current
# displayName: server2
# username: user
# passwordEncrypted: C043Fag+LKEZM0AQTWPy2g==
# domainsRegex:
# - fin_domain.*
# - .*security.*
# useBulkApi: true

# number of concurrent tasks
numberOfThreads: 5

#encryptionKey: welcome

connection:
socketTimeout: 2000
connectTimeout: 2000
sslCertCheckEnabled: false
sslVerifyHostname: false
sslProtocols: ["TLSv1"]

 

Hi Himanshu,

Please file a support ticket and attach the /logs, /conf and the /monitors folder for us to further investigate this issue.

Thanks,

Bhuvnesh



Found something helpful? Click the Accept as Solution button to help others find answers faster.
Liked something? Click the Thumbs Up button.

i Went to ignore the cert.  

Ryan.Paredez
Community Manager

Hi @Mina.Luka,

Given how old this thread is, you should try contacting AppD support.  


Thanks,

Ryan, Cisco AppDynamics Community Manager




Found something helpful? Click the Accept as Solution button to help others find answers faster.

Liked something? Click the Thumbs Up button.



Check out Observabiity in Action

new deep dive videos weekly in the Knowledge Base.