I would like to create an automation script that, in a first phase, can give me information about several security settings:
- HTTPS on Dataminer
- Client-Server encryption for cassandra/elastic
- Inter-node encryption for cassandra/elastic
How can I retrieve this information?
Seppe Dejonckheere [SLC] [DevOps Enabler] Selected answer as best 31st January 2023
It's not an automation script, but we do also have a driver which checks HTTPS and a long list of other security related items of a given server, as well as firewall ports and if the database connection is TLS encrypted and many other things. The driver name is 'DataMiner Protocol' but is not yet released, so currently only available on-demand (it runs on the IT DMS in Skyline). E.g.:
Bert
Seppe Dejonckheere [SLC] [DevOps Enabler] Posted new comment 31st January 2023
I can only help for the first one being HTTPS configuration. For this you have two options IMO:
- parse the C:\Skyline DataMiner\MaintenanceSettings.xml file and look for the <HTTPS/> tag. There you will find the attribute "enabled" followed by the FQDN of the system.
- Call the IIS manager and get the configuration for the port bindings. I did a quick search and found this method that you could use.
Baptiste Pattyn [SLC] [DevOps Enabler] Answered question 31st January 2023
Thanks, I will use this as a starting point, eventually I would like to automate the process of enabling HTTPS/TLS.