Table of Contents

Search

  1. Preface
  2. Introduction to REST V2 Connector
  3. REST V2 connections
  4. REST V2 operations
  5. Mappings and mapping tasks with REST V2 Connector
  6. Appendix A: Supported swagger objects

REST V2 Connector

REST V2 Connector

Secure communication

Secure communication

You can configure TLS authentication to establish one-way or two-way secure communication with the REST API.
The Secure Agent establishes a secure connection with the REST API over TLS. You can use one-way SSL or two-way SSL.

Use One-Way SSL

To use one-way SSL, perform the following steps:
  • Import the server certificate to the
    <Secure Agent installation directory>\jre\lib\security\cacerts
    file. Use the following command:
    keytool -importkeystore -srckeystore
    <PathtoCert>
    \clientSSL.p12 -srcstoretype
    <type of certificate pkcs12>
    -destkeystore <Informatica agent Installation location\jdk\jre\lib\security\cacerts -deststoretype JKS
  • Add JVM options for truststore file name and truststore password:
    • Click
      Administrator
      > Runtime Environments
      and select an agent.
    • Select Type as DTM under
      System Configuration Details
      .
    • Add the following JVM options:
      • JVMOption1=-Djavax.net.ssl.trustStore=
        <absolute path of the .jks truststore file>
      • JVMOption2=-Djavax.net.ssl.trustStorePassword=
        <truststore password>
    You can also specify the name of the keystore file and keystore password in the
    KeyStore File Name
    and
    KeyStore Password
    connection properties.

Use Two-Way SSL

To use two-way SSL, you must first perform the steps for one-way SSL, and then perform the following steps:
  • Add JVM options for keystore file and keystore password:
    • Click
      Administrator
      > Runtime Environments
      and select an agent.
    • Select Type as DTM under
      System Configuration Details
      .
    • Set the following JVM options:
      • JVMOption3=-Djavax.net.ssl.keyStore=
        <absolute path of the .jks keystore file>
      • JVMOption4=-Djavax.net.ssl.keyStorePassword=
        <keystore password>
    You can also specify the name of the keystore file and keystore password in the
    KeyStore File Name
    and
    KeyStore Password
    connection properties.
The Secure Agent processes the certificate in the following order:
Keystore
  1. Connection attributes
  2. JVM property
Truststore
  1. Connection attributes
  2. JVM property
  3. Certificate imported at
    <Secure Agent installation directory>\jdk\jre\lib\security\cacerts


Updated December 14, 2020