SSL instruction variables

Variables used throughout the SSL instructions.

The following variables are used throughout this section demonstrate how to set up SSL on a two node, single datacenter cluster.
Important: Anybody with access to the key and signing certificate can authorize hosts as the root certificate authority. Always secure these files.
Root certificate authority (CA) variables
rootca_path
Directory where root certificate is created and stored. DataStax recommends securing this directory, ideally on a computer isolated from the network.
rootca.conf
BYO root CA configuration file name.
Root CA DN properties
CA_DN
(certificate authority distinguished name) - Title that identify the section that contains the DN properties.
rootca_password
Password for the generated file use to sign certificates.
CC
Country Code - Two letter country code.
org_name
Name of your organization.
cluster_name
Name of your DataStax Enterprise cluster.
CA_CN
Certificate Authority Common Name.
Root CA key and signing certificate
rootca.key
Key file for the root certificate
rootca.crt
Certificate used to sign (authorize) DSE node SSL certificates.
Truststore and keystore variables
dse-truststore_name.jks
Truststore that contains root certificate.
Note: Use the same truststore that contains the root certificate on all nodes.
keystore_password
truststore_password
Password required to add trust for a CA certificate.
node_certificate_path
Location where the certificate file for each node is created. Typically, SSL certificates and keys are generated on a secure system that is isolated from the network.