This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Log in to ask a question
Log in to ask a question

Clarification on the approach to connect with components using mtls

Posted on 01-27-2021 10:45 AM
aayushi8218
New Member
Reply posted on --/--/---- --:-- AM

Hi,

It's being long I'm trying to dig in how exactly we enable mTLS between apigee components.

What I understood is:

1. Install node on On-premise/ private cloud such as GCP depending upon node topology.

2. Then based on the node installation topology install components on each node.

3. Then for each component create keystore and truststore.

4. Configure components let's say router and message processor.

5. Configure TLS between router and message processor.

Then what's next?

How mtls is being enabled?

Please Correct me if I'm wrong!

I look forward some details on the points to get a clear picture.

I need help with the steps.

Thanks and Regards

Aayushi Yadav

0 6 171
Topic Labels
0 Likes
6 REPLIES 6

Posted on --/--/---- --:-- AM
dchiesa1
Staff
Reply posted on --/--/---- --:-- AM

Have you looked at the documentation for this?

mtls-intro

0 Likes

Posted on --/--/---- --:-- AM
aayushi8218
New Member
In response to dchiesa1
Reply posted on --/--/---- --:-- AM

Hi , yes I have gone through that documentation. But can you please confirm whether the steps I have written above are correct in sequence or not?

0 Likes

Posted on --/--/---- --:-- AM
dchiesa1
Staff
In response to aayushi8218
Reply posted on --/--/---- --:-- AM

I don't see any correspondence between the steps you identified and the steps in the official documentation. It does not appear that you are performing the steps as described in the documentation. Please make sure. The steps there are:

1. update your config file

2. install consul and generate credentials

3. distribute the config file and credentials

4. initialize apigee-mtls

Are you doing those things? You didn't mention any of those steps.

The mTLS documentation at the link I cited is the source of truth. Follow those instructions for best results. If you have a specific question about a specific step in those instructions, let us know and we'll try to clarify.

0 Likes

Posted on --/--/---- --:-- AM
aayushi8218
New Member
In response to dchiesa1
Reply posted on --/--/---- --:-- AM

Hi thank you for your response. Actually I'm new to apigee and trying to understand from where to start!

Yes I do need clarification that whatever steps you have mentioned above are same for all apigee components?

And if same then can you please list down the possible steps.

0 Likes

Posted on --/--/---- --:-- AM
dchiesa1
Staff
In response to aayushi8218
Reply posted on --/--/---- --:-- AM

I'm sorry, NO, I WILL NOT list the steps.

I have stated repeatedly that the source of truth is the documentation.

Read the fine Manual, please.

https://docs.apigee.com/private-cloud/v4.50.00/mtls-intro

0 Likes

Posted on --/--/---- --:-- AM
aayushi8218
New Member
In response to dchiesa1
Reply posted on --/--/---- --:-- AM

Ok thanks you. I will go through it again.

0 Likes