User guide

ManualsBrandsCisco ManualsComputer equipmentCTX2500

461

462

463

464

465

466

467

468

469

470

B-4

Cisco Transport Manager Release 9.2 GateWay/CORBA User Guide and Programmer Manual

OL-20937-01

Appendix B Server Administration and Configuration

B.6 Using Multiple Naming Servers

• To obtain the RSA public key from CTM, use the emsSessionFactory::EmsSessionFactory_I::

getEmsPublicKey API. See 3.5.2 getEmsPublicKey, page 3-53.

• To obtain the RSA public key pair from CTM, use the emsSessionFactory::EmsSessionFactory_I::

getEmsPublicKeyPair API. See 3.5.3 getEmsPublicKeyPair, page 3-54.

CTM uses a 512-bit (64-byte) key size and returns the string representation of the RSA public key or

public key pair, encoded in the Base64 encoding scheme. OSS clients should use Base64 decoders to

decode the public key and get the byte[] of the public key from the decoded public key string. The byte[]

corresponding to the public key represents the key in its primary encoded format (X.509

SubjectPublicKeyInfo). Using this byte[] and cryptographic libraries, the RSA public key can be created.

One example of the security provider is Bouncy Castle Provider.

Use the public key to encrypt the username and password. Before passing the encrypted username and

password to CTM for login, OSS clients should encode the encrypted username and password by using

Base64 encoders to obtain the string equivalent of the encrypted data.

Note Use cryptographic libraries implementing RSA public key encryption supporting the “PKCS #1 v2.0

EME-PKCS1-v1_5 (PKCS #1 v1.5 block type 2), PKCS1Padding” encoding scheme. CTM does not

provide these cryptographic libraries.

B.6 Using Multiple Naming Servers

CTM can register with multiple naming servers. You must add the following parameters to the

CTM-server-installation-directory/cfg/corbagw.properties file:

• corbagw.namingservice.ServerList=ctmc4-u80,ctm7-u60

• corbagw.namingservice.RootIORLoc=/namingroot.ior

Complete the following steps to allow CTM to use multiple naming servers:

Step 1 In the Domain Explorer window, choose Administration > Control Panel.

Step 2 Click GateWay/CORBA Service to open the GateWay/CORBA Service pane.

Step 3 In the Global tab > GateWay/CORBA Configuration area, specify the following parameters:

• Name Service Server List—Lists all the hosts on which the naming service is running. The hosts

should be reachable from the CTM server host, and the HTTP server must be running on all naming

service hosts. Enter ctmc4-u80, ctm7-u60.

Note In addition to these naming service hosts, CTM registers itself with the local naming service.

The local naming service port is 14005 and is bundled with CTM.

• Name Service Root IOR—Defines the location and name of the file that contains the naming service

root Interoperable Object Reference (IOR). The IOR file must be accessible through the following

HTTP call: http://name-server-IP-address:80/namingroot.ior. Enter /namingroot.ior.

Step 4 Restart the CTM GateWay/CORBA service.