To enable the support for Syncplicity Rights Management on on-premise StorageVaults, a Storage Connector administrator must add several configurations to the syncp-storage.yml file.
Prerequisites
- Syncplicity Rights Management is enabled for your company account
- Obtain access to the Storage Connector virtual appliance
Configuring keystore
Follow the steps below to create and configure a keystore that will contain the Rights Management keys.
- Create a keystore on the connector:
/usr/bin/syncp-storage-irm-key --publicKey "~/key.pub" --keyStore "/etc/syncp-storage/keyStore.p12" --keyStorePassword "password" --privateKeyPassword "password"
- Set proper permissions:
chown syncp-storage:syncp-storage /etc/syncp-storage/keyStore.p12
chown syncp-storage:syncp-storage ~/key.pub
- Edit storage connector syncp-storage.yml to configure it for keystore usage:
syncplicity:
crypto.keyStore:
enforced: false
password: "password"
file: "/etc/syncp-storage/keyStore.p12"
Updating additional parameters
- Log in to the Storage Connector virtual appliance as the root user.
-
onfigure the following properties to the syncp-storage.yml file.
Parameter Default value Description syncplicity.storage.plugins.irm.fileRetrieveTimeout 60 Sets the timeout in seconds when writing file from storage to disk. syncplicity.storage.plugins.irm.poolRefreshInterval 1200 Sets the interval in seconds to refresh pooled connections. syncplicity.storage.plugins.irm.poolSize 5 Sets the maximum number of IRM connections to keep active. syncplicity.storage.plugins.irm.tmpPath
/var/lib/syncp-storage/irm-cache Sets the location where IRM protected files are temporary stored on the Storage Connector syncplicity.storage.plugins.irm.syncrm.proxy.enabled false Enables/disables the Information Rights Management (IRM) proxy that is used in order to connect from on-premises Storage Connector nodes to a cloud hosted IRM server. syncplicity.storage.plugins.irm.syncrm.proxy.host Sets the IRM proxy host name. syncplicity.storage.plugins.irm.syncrm.proxy.port 8080 Sets the IRM proxy port number.
Restart the Storage Connector
Once you make the necessary changes, restart the Storage Connector.
systemctl restart syncp-storage.service
What to do next
Enable the SRM on the StorageVaults. See Enable Syncplicity rights management on a StorageVault.