Red Hat Training

A Red Hat training course is available for Red Hat Gluster Storage

Chapter 2. Authentication and Security

This chapter provides information on authorization through Red Hat Storage Console's security.
22632%2C+Console+Developer+Guide-322-09-2014+17%3A11%3A35Report a bug

2.1. TLS/SSL Certification

The Red Hat Storage Console API requires Hypertext Transfer Protocol Secure (HTTPS) for secure interaction with client software, such as the Console's SDK and CLI components. This involves a process of attaining a certificate from your Red Hat Storage Console server and importing it into your client's certificate store.

Procedure 2.1. Attain a certificate

This process helps a user attain a certificate from the Red Hat Storage Console and transfer it to the client machine. A user achieves this using one of two methods:
  1. Method 1 - Use a command line tool to download the certificate from the server. Examples of command line tools include cURL and Wget; both are available for multiple platforms.
    1. If using cURL:
      curl -o rhsc.cer http://[rhsc-server]/ca.crt
    2. If using Wget:
      wget -O rhsc.cer http://[rhsc-server]/ca.crt
  2. Method 2 - Use a web browser to navigate to the certificate located at:
    http://[rhsc-server]/ca.crt
    Depending on the chosen browser, the certificate either downloads or imports into the browser's keystore.
    1. If the browser downloads the certificate: save the file as rhsc.cer.
      If the browser imports the certificate: export it from the browser's certification options and save it as rhsc.cer.
Each of the above methods results in a certificate file named rhsc.cer on your client machine. An API user imports this file into the client's certificate store.

Procedure 2.2. Import a certificate to your client

  • A certificate import for your client relies on how the client itself stores and interprets certificates. This guide contains an example on importing to a Java keystore in Appendix D, Java Keystores. For clients not using Network Security Services (NSS) or Java KeyStore (JKS), please refer to your client documentation for more information on importing a certificate.
22632%2C+Console+Developer+Guide-322-09-2014+17%3A11%3A35Report a bug