Configuration files in Protocol Gateway
This article is valid for Certificate Manager 8.5 and later.
This article describes the configuration files and folders that come with Protocol Gateway.Â
Each enrollment protocol is configured in a separate <protocol>.properties file and determines the following:
The flag to enable the protocol.
The names of the enrollment token procedures in CM server.
The name and location of any device RA token.
Any protocol specific configuration.
It is possible to override the cmHost and officer parameters specified in cmgateway.properties. on a protocol and/or handler level. This makes it possible for different protocols and handlers to connect to different CF instances. See below for an example on how to configure cmHost and officer for a handler:
Example: How to configure cmHost and officer for a handler
handler.20.filter = certificates/[a-z0-9A-Z]+/details
handler.20.format = api/certificates-details
handler.20.cmhost = cf-host-ip
handler.20.officer.keyfile = protocol-gateway-vro-cf-host-ip.p12
handler.20.officer.password = <...>
<configroot> path
The <protocol>.properties file are stored in the <configroot> path.Â
<configroot> corresponds to the following paths:Â
Windows <configroot>
%ALLUSERSPROFILE%/Nexus/cm-gateway/
Linux <configroot>
/var/cm-gateway/
Configuration files
These are the standard configuration files in <configroot>/conf:
Configuration files and folders | Description |
---|---|
Contains configuration for the ACME service. | |
api.properties | Contains configuration for the CM REST API service. |
ast.properties | Contains configuration for the AST service. |
auth.properties | Contains configuration for the CM WEB UI authorization service. |
cmgateway.properties | Defines network parameters and service definitions. |
cmc.properties | Contains configuration for the CMC service. |
cmp.properties | Contains configuration for the CMP service. |
dc.properties | Contains configuration for the Distribution Center service. |
Contains configuration for the Distribution Point service. | |
Contains configuration for the EST service. | |
eui.properties | Contains configuration for the EUI service. |
itss.properties | Contains configurations for ETSI Intelligent Transportation System Stations. See also Upgrade Protocol Gateway. |
logging.properties | Contains configuration for logging. |
ping.properties | Contains configuration for the Ping service. |
scep.properties | Contains configuration for the SCEP service. |
Contains configuration for the SDK Proxy service. | |
winep.properties | Contains configuration for the WinEP service. |
certdir | The certdir folder contains the trusted issuer certificates of the TLS server certificate of the CM server. |
Configure verifications of certificate requestsÂ
For more information, see Certificate request verifications in Protocol Gateway.Â
Copyright 2024 Technology Nexus Secured Business Solutions AB. All rights reserved.
Contact Nexus | https://www.nexusgroup.com | Disclaimer | Terms & Conditions