(Optional) Configure a TLS certificate

If you choose to use the default TLS (formerly SSL) certificates provided with DataPlane, then DataPlane generates self-signed certificates. If using your own certificates, then you must modify certificate configuration settings.

DP Platform is required as a baseline, but you can install any combination of DP Apps on top of the platform. After installing the platform, see the installation instructions for each DataPlane app for instructions on how to install and configure the app on the platform.
DataPlane supports only PEM-encoded certificates and only with OpenSSL 1.0.2k or later.
You will be configuring your own SSL certificate.

You need root user access on the DP Host to perform this task.
DataPlane supports only PEM-encoded certificates and only with OpenSSL 1.0.2k or later.
Have the full path and file name for the public key and private key (.pem files) and the certificate password available.

If your private key file is in RSA/DES format, run the following command to convert the private key to PCKS8 encrypted key format:
```
openssl pkcs8 -topk8 -in <server.key> -out <pcks8.key>
```
Make sure to replace <server.key> with your key in RAS/DES format and <pcks8.key> with the desired PCKS8 encrypted key.
Open the configuration file:
```
/usr/dp/current/core/bin/config.env.sh
```

Uncomment and modify the following properties:

USE_TLS="true"
USE_PROVIDED_CERTIFICATES="yes"
DATAPLANE_CERTIFICATE_PUBLIC_KEY_PATH="<absolute_path_of_public_key_file>"
DATAPLANE_CERTIFICATE_PRIVATE_KEY_PATH="<absolute_path_of_encrypted_private_key_file>”

Save the file.