Technical Details on Agent Tunnels

Started by Staj, July 24, 2020, 08:20:25 AM

Previous topic - Next topic
Print
Go Down Pages1
User actions

Staj

July 24, 2020, 08:20:25 AM Last Edit: July 24, 2020, 08:22:03 AM by Staj
I'm looking to evaluate the Agent Tunnels feature but I wanted to learn more about how it works.

  • Will there be support in the future to configure TLS protocol and cipher suites etc. for hardening?
  • I'm assuming it's utilising Mutual TLS for server and client authentication?
  • How are the agent certificates generated? Are they self-signed then registered with NetXMS server? Is a CSR generated on agent, sent to NetXMS, signed by NetXMS (How?) and then signed certificate returned? If the latter, how is the NetXMS CA managed?
  • How is NetXMS server certificate validated (on initial connection and subsequent ones) by agents? I'm assuming agent needs to trust the Issuing CA of the NetXMS server certificate? Does it use the platforms relevant certificate store or a Java certificate store or just a file?
Print
Go Up Pages1
User actions