The Engine Controller Daemon requires five files to manage the Authentication process
- NaCl Public and Private Key files
- Authorized key List file - NACL.AUTH.KEYS
- Access Control List file - acl.cfg
- Agent Configuration file - sqdagents.cfg
Public and private keys
The utility SQDUTIL will be executed from the command line under the User_Name (User_ID) to be used by the Engine to generate the public / private key pair:
sqdutil keygen
By default the private key is generated in ~/.nacl/id_nacl and the public key in ~/.nacl/id_nacl.pub. The Apply Engine's public key must then be added to the Authorized Key List file used by the Capture Controller Daemon running on the Source Platform.
Authorized key list
The NACL.AUTH.KEYS file will contain a concatenated list of the Public Keys of all the Agents interacting with the Engine Controller Daemon. In this example that will only include the Apply Engine running on Linux. On Linux this is usually done by a systems administrator using a text editor.
Access control list and agent configuration files
These two files are usually created using a text editor on Linux.
default_acl=query
[groups]
group_name=user_name
[acls]
group_name=admin
acl=acl.cfg
authorized_keys=/home/sqdata/nacl.auth.keys
identity=/home/sqdata/.nacl/id_nacl
message_file=../logs/acl.log
service=2626
[DB2TOKAF]
type=engine
program=sqdata
args=--log-level=2 DB2TOKAF.prc
working_directory=c:/home/sqdata/ENGINE
auto_start=yes