jodbc Service and SQL Catalog



Similar documents
KMIP installation Guide. DataSecure and KeySecure Version SafeNet, Inc

unigui Developer's Manual 2014 FMSoft Co. Ltd.

Using Debug Commands

e-cert (Server) User Guide For Apache Web Server

Using Debug Commands

Go to Policy/Global Properties/SmartDashboard Customization, click Configure. In Certificates and PKI properties, change host_certs_key_size to 2048

Installing an SSL certificate on the InfoVaultz Cloud Appliance

To enable https for appliance

Using Debug Commands

LoadMaster SSL Certificate Quickstart Guide

Novell Identity Manager

SWITCHBOARD SECURITY

Browser-based Support Console

Using LDAP Authentication in a PowerCenter Domain

Network-Enabled Devices, AOS v.5.x.x. Content and Purpose of This Guide...1 User Management...2 Types of user accounts2

Security Workshop. Apache + SSL exercises in Ubuntu. 1 Install apache2 and enable SSL 2. 2 Generate a Local Certificate 2

NetApp Storage Encryption: Preinstallation Requirements and Procedures for SafeNet KeySecure

Clearswift Information Governance

HTTPS Configuration for SAP Connector

Configuring Syslog Server on Cisco Routers with Cisco SDM

Application Note AN1502

Cisco SSL Encryption Utility

Deploying Certificates with Cisco pxgrid. Using Self-Signed Certificates with ISE pxgrid node and pxgrid Client

Managing the SSL Certificate for the ESRS HTTPS Listener Service Technical Notes P/N REV A01 January 14, 2011

Encrypted Connections

EventTracker Windows syslog User Guide

Working with Certificate and Key Files in MatrixSSL

LAB :: Secure HTTP traffic using Secure Sockets Layer (SSL) Certificate

DESLock+ Basic Setup Guide Version 1.20, rev: June 9th 2014

Configuring System Message Logging

Architecting the Future of Big Data

Cloud Services. Introduction...2 Overview...2. Security considerations Installation...3 Server Configuration...4

SSL Tunnels. Introduction

Replacing vcenter Server 4.0 Certificates VMware vsphere 4.0

Generate CSR for Third Party Certificates and Download Unchained Certificates to the WLC

>copy openssl.cfg openssl.conf (use the example configuration to create a new configuration)

Communications Access Methods for SAS/CONNECT 9.4 and SAS/SHARE 9.4 Second Edition

Low cost secure VPN MikroTik SSTP over OpenIXP (Indonesian Internet) ASTA INFORMATICS Faisal Reza

Installing Apache as an HTTP Proxy to the local port of the Secure Agent s Process Server

Linux Deployment Guide. How to deploy Network Shutdown Module for Linux

LISTSERV LDAP Documentation

Certificate Management for your ICE Server

Architecting the Future of Big Data

Communications Access Methods for SAS/CONNECT 9.3 and SAS/SHARE 9.3 Second Edition

The release notes provide details of enhancements and features in Cloudera ODBC Driver for Impala , as well as the version history.

Securing Web Access with a Private Certificate Authority

Emerald. Network Collector Version 4.0. Emerald Management Suite IEA Software, Inc.

Secure IIS Web Server with SSL

Ciphermail Gateway Separate Front-end and Back-end Configuration Guide

Upgrade Guide BES12. Version 12.1

Exercises: FreeBSD: Apache and SSL: SANOG VI IP Services Workshop

Unifying Information Security. Implementing TLS on the CLEARSWIFT SECURE Gateway

CERTIFICATE-BASED SINGLE SIGN-ON FOR EMC MY DOCUMENTUM FOR MICROSOFT OUTLOOK USING CA SITEMINDER

Reporting Guide for Novell Sentinel

RSA Security Analytics

NSi Mobile Installation Guide. Version 6.2

Quick Note 040. Create an SSL Tunnel with Certificates on a Digi TransPort WR router using Protocol Switch.

inforouter V8.0 Server Migration Guide.

Configuration Guide for Active Directory Integration

Cloud Services. Introduction...2 Overview...2 Simple Setup...2

Junio SSL WebLogic Oracle. Guía de Instalación. Junio, SSL WebLogic Oracle Guía de Instalación CONFIDENCIAL Página 1 de 19

HP OpenView Adapter for SSL Using Radia

Active Directory Service. Integration Parameters and Implementation

STATISTICA VERSION 12 STATISTICA ENTERPRISE SMALL BUSINESS INSTALLATION INSTRUCTIONS

OpenSSL (lab notes) Definition: OpenSSL is an open-source library containing cryptographic tools.

Tool Tip. SyAM Management Utilities and Non-Admin Domain Users

LAB :: Secure HTTP traffic using Secure Sockets Layer (SSL) Certificate

If you prefer to use your own SSH client, configure NG Admin with the path to the executable:

Basic Exchange Setup Guide

Domino and Internet. Security. IBM Collaboration Solutions. Ask the Experts 12/16/2014


Security Provider Integration RADIUS Server

Using custom certificates with Spectralink 8400 Series Handsets

Release Notes For Versant/ODBC On Windows. Release

C O N F I G U R I N G O P E N L D A P F O R S S L / T L S C O M M U N I C A T I O N

DIGIPASS Authentication for Windows Logon Getting Started Guide 1.1

Creating Certificate Authorities and self-signed SSL certificates

EMC VNX Version 8.1 Configuring and Using the Audit Tool on VNX for File P/N Rev 01 August, 2013

FUJITSU Cloud IaaS Trusted Public S5 Configuring a Server Load Balancer

Configuring Samba with SSL

Installing Cobra 4.7

Generating and Installing SSL Certificates on the Cisco ISA500

Implementing Microsoft SQL Server 2008 Exercise Guide. Database by Design

Implementing SSL Security on a PowerExchange Network

EMC NetWorker. Security Configuration Guide. Version 8.2 SP REV 02

Dialogic 4000 Media Gateway Series as a Survivable Branch Appliance for Microsoft Lync Server 2010

Click Studios. Passwordstate. Upgrade Instructions to V7 from V5.xx

Basic Exchange Setup Guide

Configuring Secure Socket Layer and Client-Certificate Authentication on SAS 9.3 Enterprise BI Server Systems That Use Oracle WebLogic 10.

Firewall Load Balancing

Cloudera ODBC Driver for Apache Hive Version

Cloud Services for Backup Exec. Planning and Deployment Guide

Installation Instruction STATISTICA Enterprise Small Business

WhatsUp Gold v16.2 Database Migration and Management Guide

Enterprise SSL Support

EMC Data Protection Search

SAS 9.3 Foundation for Microsoft Windows

Transcription:

jodbc Service and SQL Catalog

jbase_agent {options} The jbase_agent command can be run from the command prompt (windows) or shell (Linux) as a foreground process for testing and setup and is also the service (windows) or daemon program (Linux) options -A mode, --authentication=mode mode none --???? user -- Authenticated to be in the JAGENT_USER file [see Setting up User authentication] account -- Authenticate to the SYSTEM file entry for the jbase account -b interface or ipaddress Bind to a specific local interface. If not specified then bind to all local interfaces. E.g. jbase_agent -b 192.168.1.10 -c path to certificate, --certificate=path to certificate See Enabling SSL Encryption path to certificate is the path to a valid x509 certificate. Note (-k / --private_key) is mandatory with this option. -F (NOT APPLICABLE when run as a windows service) Create log files for each client connection in the directory where jbase_agent is started. The format of the file is P[pid].log. -h Print help screen -k path to private key, --private_key=path to private key See Enabling SSL Encryption path to private key is the path to a valid private key. Note (-c / --certificate) is mandatory with this option. -L log level, --loglevel=log level (NOT APPLICABLE when run as a windows service) log level 0 No logging 1 LOG_TRACE 2 LOG_DEBUG 3 LOG_INFO (default level if L option not specified) 4 LOG_NOTICE 5 LOG_WARNING 6 LOG_ERROR 7 LOG_CRITICAL 8 LOG_ALERT 9 LOG_EMERGENCY -n servicename servicename is the name of the service as it is to be installed in Windows. -N Do not set TCP_NO_DELAY. Useful for performance tuning -p listenport, --port=listenport listenport is port that will listen for client connections. The default port is 20002 if not specified. -R buffersize Set read buffer size (in bytes) Zumasys, Inc. 2

-W buffersize Set write buffer size (in bytes) jbase_agent as a Service The service options allow jbase_agent to be installed and started as a Win32 Service on Windows platforms, and as a daemon on Linux platforms. 1. Windows: jbase_agent install Service Name {options} jbase_agent start Service Name jbase_agent stop Service Name jbase_agent remove -n Service Name ServiceName is the Name of the service as it appears in Windows services options are command options as in the jbase_agent section Note that jbase_agent Win32 services will send logger messages to the Windows Event Log. Changing the tracing level (option L) and logging to a file (option -F) is not applicable to a jbase_agent service and only error messages will be logged. 2. Linux: jbase_agent start <options> jbase_agent stop Enabling SSL Encryption jagent may be configured to use SSL encryption. To activate SSL encryption it is enough to provide a valid x509 certificate and a private key (See command line options). The following example describes how to create a self-signed certificate with OpenSSL on Windows: 1. Create a RSA private key: C: >openssl genrsa -out key.pem 1024 Loading 'screen' into random state - done Generating RSA private key, 1024 bit long modulus.++++++...++++++ e is 65537 (0x10001) 2. Create a certificate ( signing ) request using the previously created private key: C:...>openssl req -config c:\programs\openssl\openssl.cnf -new -key key.pem -out req.pem Loading 'screen' into random state - done You are about to be asked to enter information that will be incorporated into your certificate request. What you are about to enter is what is called a Distinguished Name or a DN. There are quite a few fields but you can leave some blank For some fields there will be a default value, If you enter '.', the field will be left blank. ----- Country Name (2 letter code) [AU]: State or Province Name (full name) [Some-State]: Locality Name (eg, city) []: Organization Name (eg, company) [Internet Widgits Pty Ltd]:MyCompanyName Organizational Unit Name (eg, section) []: Zumasys, Inc. 3

Common Name (eg, YOUR name) []:MyCompanyName Email Address []: Please enter the following 'extra' attributes to be sent with your certificate request A challenge password []: An optional company name [] At this stage the certificate request should be sent to a Certification Authority, or proceed to the next step to self-sign the certificate e.g. if used for testing purposes. 1. Create self-signed certificate: C: >openssl req -config c:\programs\openssl\openssl.cnf -x509 -key key.pem -in req.pem -out cert.pem - days 365 Loading 'screen' into random state - done 2. Start jagent in SSL mode: C:\programs\openssl\bin>jbase_agent c cert.pem k key.pem Authentication modes: jbase_agent supports three different authentication modes 1. none - Does not verify any user credentials 2. user - Verifies user credentials against a JAGENT_USER file. See Setup user authentication 3. account - Acccount / Password will authentication against JEDIFILENAME_SYSTEM file Setup user authentication 1. Create the jagent user file $ CREATE-FILE JAGENT_USER 1 53 [ 417 ] File JAGENT_USER]D created, type = J4 [ 417 ] File JAGENT_USER created, type = J4 2. Create the user and set the password $ jbase_agent adduser test $ jbase_agent passwd test newpassword 3. Now start jbase_agent to authentication with user authentication. $ jbase_agent -A user Setup account authentication The environment should be configured with JEDIFILENAME_SYSTEM set to a valid jbase SYSTEM file that contains the jbase accounts you wish to connect to. 1. Start jbase_agent to authentication with account authentication $ jbase_agent A account 1. 2. When using Account authentication, the password in the ODBC connection dialog is the password for the jbase account and not the password of the connecting user. Examples: - Start jbase_agent on default port (20002): jbase_agent Zumasys, Inc. 4

- Start jbase_agent on port 20003 and configure tracing to display errors only jbase_agent p 20003 L 6 - Start jbase_agent with SSL encryption with certificate mycert.cer and private key mypk.pk on Windows jbase_agent c c:\certs\mycert.cer k c:\certs\mypk.pk - Install and start jbase_agent as a Windows service with default service name (jbase jagent Server) on default port jbase_agent install jbase_agent start - Install and start jbase_agent as a Windows Service with service name MyAgent1, port 20003, and user authentication jbase_agent install n MyjAgent1 p 20003 A user jbase_agent start - Starting jagent as a Unix daemon on port 20003 and redirecting logging messages to text files. jbase_agent start p 20003 -F sqlcatman {options} {-f filename} {-e dictname} tablename The sqlcatman command is used to add and maintain SQL tablenames in a catalog. This catalog is used by SQLSELECT and the jbase ODBC Datasource if specified under Adv. Options as a UserCatalog: There can be multiple SQL catalogs and the catalog to be altered must first be defined by the environment variable JSQLFILENAME_CATALOG. The first entry added to the catalog will create the file as a JR type file or you can create the file ahead as a JR type file. E.g. CREATE-FILE CATALOG1 TYPE=JR then export/set JSQLFILENAME_CATALOG=CATALOG1 options -a Add catalog entry -d (limited use. Allows a DICT file to be added as a SQL table) Add dict portion of catalog entry -r Delete catalog entry -h Help screen -f filename jbase hashed file, directory file or STUB file data portion. -e dictname File for jbase DICT formatted items that are to be used with this tablename. This is usually a Zumasys, Inc. 5

subset or altered version of the files actual dictionary which is more SQL standard in naming and format. tablename The name of the table as used by SQLSELECT or the ODBC connection. tablename = name of SQL table filename = name of jbase file (if omitted same as tablename) dictname = name of jbase dict file to use, (if omitted default for filename) Examples: For all examples, you must already have JSQLFILENAME_CATALOG set or SET JQSQFILENAME=CATALOG1 (Windows) or export JSQLFILENAME_CATALOG=CATALOG1 (Linux) where CATALOG1 is the name of this SQL catalog. - Add a new catalog entry with default data and dictionary files sqlcatman -a CUSTOMER - Create a new catalog entry with default data and dictionary, but alternate catalog name. This is aimed at nonstandard SQL file names such as those with periods in the name. This would mean SQLSELECT or ODBC connector would refer to the CUSTOMER.HISTORY file and DICT items as the CUST_HIST table. sqlcatman -a -f CUSTOMER.HISTORY CUST_HIST - Alternative dictionary with a file, this can help limit which dictionary items users can see, or you may have a non-sql standard DICT items in the actual dictionary. sqlcatman -a -f CUSTOMER -e CUSTOMER_SQL CUST_SQL - Remove a table from the catalog sqlcatman -r CUSTSQL Zumasys, Inc. 6

2026 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information