The UIM Server installer creates a .pem file (certificate.pem) in the
<Nimsoft>\security folder. The .pem file is a symmetric key that is shared with the required robots, which is then used for communication with the data_engine probe. You copy this .pem file to the remote UMP, UR, and CABI robots and provide the location of the file in the robot.cfg file (
cryptkey = <.pem file location>). Furthermore, if any impacted probe is not on the same computer where data_engine is present, copy the generated .pem file to the robot computer (where data_engine is not available) and update the robot.cfg file with the .pem file location on that computer.
To configure the robot.cfg file, follow these steps:
cryptkey = <location of the .pem file>
cryptkey = c:\Certificate\certificate.pem
You have successfully configured the robot.cfg file.
Though the UIM Server installer automatically generates a .pem file (certificate.pem) in the
<Nimsoft>\security folder, you can generate your own .pem file, if you want. You then need to copy the same .pem file to all the required places (UMP robot, UR robot, CABI robot) and configure the robot.cfg file as explained. You can use OpenSSL to create a .pem file.
Note: data_engine does not consider the .pem file expiry though the automatically generated .pem file has a validity of 365 days. However, as a best practice, we recommend that you keep regenerating your .pem file based on your security requirements.
Follow these steps:
C:\Program Files (x86)\GnuWin32\share\openssl.cnf.
openssl req -nodes -new -x509 -days <number of days the certificate is valid for> -out <certificate_filename>.pem
Enter the following information when prompted:
Country Name (2 letter code) [AU]:
State or Province Name (full name) [Some-State]:
Locality Name (eg, city) :
Organization Name (eg, company) [Internet Widgits Pty Ltd]:
Organizational Unit Name (eg, section) :
Common Name (e.g. server FQDN or YOUR name) :
Email Address :