Searching the Help
To search for information in the Help, type a word or phrase in the Search box. When you enter a group of words, OR is inferred. You can use Boolean operators to refine your search.
Results returned are case insensitive. However, results ranking takes case into account and assigns higher scores to case matches. Therefore, a search for "cats" followed by a search for "Cats" would return the same number of Help topics, but the order in which the topics are listed would be different.
Words and Phrases
| Search for | Example | Results |
|---|---|---|
| A single word | cat
|
Topics that contain the word "cat". You will also find its grammatical variations, such as "cats". |
|
A phrase. You can specify that the search results contain a specific phrase. |
"cat food" (quotation marks) |
Topics that contain the literal phrase "cat food" and all its grammatical variations. Without the quotation marks, the query is equivalent to specifying an OR operator, which finds topics with one of the individual words instead of the phrase. |
Using Boolean Operators
| Search for | Operator | Example |
|---|---|---|
|
Two or more words in the same topic |
|
|
| Either word in a topic |
|
|
| Topics that do not contain a specific word or phrase |
|
|
| Topics that contain one string and do not contain another | ^ (caret) |
cat ^ mouse
|
| A combination of search types | ( ) parentheses |
|
- Configure CSA
- Stop CSA
- Update applicationContext.xml to be FIPS 140-2 Compliant
- Configure Properties in the Java Security File
- Create a CSA Encryption Keystore
- Create a New Keystore and Truststore for Secure Communication
- Re-Encrypt CSA Passwords
- Configure CSA Properties
- Configure the Marketplace Portal for FIPS 140-2 Compliance
- Configure the Identity Management Component
- Disable HP Single Sign-On
- Configure CSA to Use SAML
- Start CSA
- Update the Process Engine Password
- Test Secure Connections
Create a CSA Encryption Keystore
This section describes an example of how to create a keystore, referred to in this document as the CSA encryption keystore that is used by CSA to encrypt and decrypt a key. This key is used to encrypt and decrypt the data in CSA. The validity period assigned to the CSA encryption keystore is not used by CSA.
The examples used in this document saves the keystore in the %CSA_HOME%\jboss-as\standalone\configuration\ directory. You may choose to store the keystore in any location; however, you must remember to use that location in any other subsequent example.
Note In the following examples, %CSA_HOME% is the directory in which
CSA is installed (for example, C:\Program Files\HPE\CSA), the keytool utility is included with the JRE, and a JRE has been installed for CSA in <csa_jre>.
The following is an example of how to create the CSA encryption keystore:
-
Open a command prompt and change directories to
%CSA_HOME%. -
Run the following command:
"<csa_jre>\bin\keytool" -genkey -alias csa_encryption_key
-validity 365 -keyalg rsa -keysize 2048 -storetype PKCS12
-keystore .\jboss-as\standalone\configuration\csa_encryption_keystore.p12where
<csa_jre>is the directory in which the JRE that is used by CSA is installed..You can use different values for
-alias,-validity,-keysizeand-keystore. These instructions assume that you will use the-aliasand-keystorevalues recommended here; you will have to adjust the commands accordingly if you use different values.Because the CSA encryption keystore is used by CSA to only encrypt and decrypt a key and not to generate certificates, you can enter any value for
-validity. The validity period assigned to the CSA encryption keystore is not used by CSA. -
Enter a keystore password (referred to in this document as the CSA encryption keystore password).
This password is used to control access to the keystore. This password must be the same as the password you enter for the key in step 5 of this task.
Note You must create a password file with this password whenever CSA is started. See Start CSA for more information.
-
Follow the prompts to enter your first and last name, organization, and location values.
-
Enter the keystore password you supplied earlier to use as the key password.
Although
keytoolallows you to enter different passwords for the keystore and the key, the two passwords must be the same to work with CSA.
We welcome your comments!
To open the configured email client on this computer, open an email window.
Otherwise, copy the information below to a web mail client, and send this email to clouddocs@hpe.com.
Help Topic ID:
Product:
Topic Title:
Feedback: