Add an additional proxy on Linux

After the first Edge Encryption proxy is properly configured and tested, you can set up additional proxies on Linux.

About this task

Note: Make sure that all proxies have the same encryption keys and the same RSA key pair used to digitally sign encryption configuration and encryption rules.

Procedure

  1. Install the proxy using the command for Linux. See Install the encryption proxy on Linux.
  2. Copy all the encryption keys and the edgeencryption.properties file from the first proxy to the new proxy.
    Encryption keys may be located in the proxy keystore, in the /keys directory, or in a SafeNet KeySecure keystore.
  3. Open the edgeencryption.properties file on the new proxy.
  4. Change the following properties:
    Property Description
    edgeencryption.proxy.name Unique name of the proxy server
    edgeencryption.proxy.host The server name, IP address, or fully-qualified domain name of the computer running the proxy. Do not change this property if installing the proxy server on the same machine the properties file was copied from.
    edgeencryption.proxy.http.port Port on the proxy for HTTP communication. Must be unique across all processes on the machine.
    edgeencryption.proxy.https.port Port on the proxy for HTTPS communication. Must be unique across processes on the machine.
  5. Save and close the file.
  6. Launch the proxy using the appropriate command. See Start the Edge Encryption proxy.