Versions Compared

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.
Comment: Update emulator support for TLS configuration option

...

  • [esxi]: the parameters in this section are set up by the esxi_bind program. Do not modify them manually.
  • [peer]: contains the configuration of a peer license server when running in AutoVE mode. If a peer has been defined, the two license servers can synchronize their client databases and act as primary and backup AutoVE servers. It contains the following parameters:
    • address: IP address of the peer license server
    • port: TCP port used to contact the peer server
    • passphrase: used to authenticate to the peer server (must be the same as configured on the the license installed on the peer). This use of the passphrase is different from the client/server authentication when the license server runs in general VE mode.
  • [general]: used to define non-default ports for the VE server operation:
    • port: TCP port used to serve the license to license client systems. Default: 8083.
    • http_port: TCP port on which the web interface can be accessed. Default: 8084.
    • http_redirect: available starting with version 1.1.25. Enables (= on) or disables (= off) HTTP to HTTPS redirection. Default: on. If HTTP redirection is enabled, TCP port 80 must be accessible to the license server. If another application uses port 80, redirection has to be disabled.
    • sync_port: local TCP port for communicating with the peer server. Default: 8085. Relevant for AutoVE mode.
    • disable_insecure_protocol: introduced in version 2.4.3. If set to on, the insecure older protocols TLS 1.0/1.1, SSL 2.0/3.0 will be disabled for the communication between emulator and license server. Please note that emulator support for this feature starts with SSP 5.5.2, PARĀ 3.0.9, and AXP/VAX 4.12. Older versions are not compatible with disabling these protocols (will report error: Failed to send data to the license server). Default value is off.

Please note:

  • After parameters in this file have been changed, the license server must be restarted to activate the changes (# systemctl restart licensed).
  • After the web server port has been changed, the browser cache should be cleared to avoid problems.
  • If the ports required by the web GUI are not accessible to the license server's integrated web server, the license server will not start.

...