Filter
Top Products
Configuring SSL Ciphers for Management Servers
23
# service iptables save
5.3.2. Configuring SSL Ciphers for Management Servers
Citrix recommend you to use ciphers with size higher than 128 bits for CloudPlatform Management
Server. Do not use weak ciphers such as RC4. For the ease of making these configuration changes,
a new configuration file, /etc/cloudstack/management/java.security.ciphers, has been
introduced. In this file, make the following change:
jdk.tls.disabledAlgorithms=DH keySize < 128, RSA keySize < 128, DES keySize
< 128, SHA1 keySize < 128, MD5 keySize < 128, RC4
This file name has been set in the JAVA_OPTS which overrides or appends the values from /
etc/cloudstack/management/java.security.ciphers to $JRE_HOME/lib/security/
java.security. This operation is performed when you start the Management Server.
Therefore, before starting the Management Server, ensure that the
security.overridePropertiesFile parameter is in $JRE_HOME/lib/security/
java.security is set to true. It implies that the values can be overriden in java.security file.
5.4. Logging on to CloudPlatform Web UI
After the successful installation of CloudPlatform in your environment, you can do the following:
• You can run the Web UI and log-in to the UI. This will help you understand CloudPlatform offerings
and the way you will interact with CloudPlatform on an ongoing basis.
Chapter 6, Logging on to the Management Server Web UI
• You can add the cloud infrastructure and try running some virtual machines on it. This will help you
watch how CloudPlatform manages the infrastructure.
For more information, refer to CloudPlatform (powered by Apache CloudStack) Version 4.5 Getting
Started Guide.