Forum Discussion

jhuenema's avatar
jhuenema
Level 3
10 years ago

Dedupe Server - necessity and SSL

Hi, all;

Our company's information security organization is examining security vulnerabilities across the enterprise and has flagged two particular lines for DLO:

I've opened a formal support case to see if we were able to replace the self-signed cert for Tomcat (Mindtree StoreSmart Dedupe Server), and was told "you can try it, but you lose support for the product." My security organization wants to know:

  • Is this definitely the case, that it's an unsupported configuration to replace the default self-signed cert with one from our certificate authority?
  • Since we don't use the dedupe feature at all, can we disable the service and not keep it active? All of our profiles and storage locations do not have dedupe enabled.

To be compliant with our security requirements, we would really like to be able to at least replace the cert, if not turning the service off.

  • Checking internally with the appropriate team. Will keep this post updated.

  • Hi,

    As of now you can disable the mindtree storesmart service as you are not using dedupe feature.

    As of now we dont have support for CA certifcate with mindtree storsmart service. So if you want to use dedupe feature with CA certificate, then please raise a support case will help you in resolving it.

    Thanks,
    Santosh