Ad Widget

Collapse

client authentication: agent --> proxy

Collapse
X
Collapse
 
  • Page of 1
  • Time
  • Show
Clear All
new posts
Previous template Next
  • iwidjaya
    Junior Member
    • Apr 2016
    • 16
    #1

    client authentication: agent --> proxy

    Hi,

    Can anyone share how to setup 'client-authentication' zabbix agent --> zabbix proxy ?
    What are the prerequisite for this effort?
    I'm currently using active-agent configuration.
    Tags: None
    • iwidjaya
      Junior Member
      • Apr 2016
      • 16
      #2
      Please ignore it.

      Got the steps from 3.0 manual.

      https://www.zabbix.com/documentation...certificates?s[]=client&s[]=authentication

        Comment

        • Wescott569
          Junior Member
          • Jul 2018
          • 2
          #3
          1. Open the Administrator Utility window.
          2. Click Users/Groups in the left pane to open the list of defined groups and users.
          3. Right-click a user or group and select Sessions to open the Configured Sessions window.
          4. If you are configuring a new session, click the appropriate button. If you are changing a session, right-click the session icon and click Properties.
          5. In the left pane, click Connection.
          6. In the right pane, in the Protocol listbox, select a secure protocol (either Telnet-TLS or Telnet-SSL only).
          7. In the left pane, expand Connection and click TLS/SSL.
          8. To enable server authentication, select Server authentication. Read about known security limitations when using the Internet.
          9. To use client authentication, click Yes for sending a Certificate.
          10. Specify the Certificate Source and Certificate Location or Certificate Name
          Last edited by vitalijs.m; 22-08-2018, 13:28.

            Comment

            • bettydiaz
              Banned
              • Oct 2018
              • 1
              #4
              .1. In order to verify peer certificates, Zabbix server must have access to file with their top-level self-signed root CA certificates. For example, if we expect certificates from two independent root CAs, we can put their certificates into file /home/zabbix/zabbix_ca_file.
              2. Put Zabbix server certificate chain into the file, for example, /home/zabbix/zabbix_server.crt.
              3. Put Zabbix server private key into the file, for example, /home/zabbix/zabbix_server.key
              4.Edit TLS parameters in Zabbix server configuration file.

                Comment

                Previous template Next
                Working...