Skip to content

Secure the SEAL Operator Services

For security reasons, SEAL Systems strongly recommends configuring the TLS encryption. This is also one step to get rid off the annoying certificate warnings in the browser.

Configure the TLS Encryption

  1. Get a TLS certificate in PEM format, see the Requirement.

  2. Replace the following file containing the private key:

    /opt/seal/etc/tls/key.pem

  3. Replace the following file containing the public certificate:

    /opt/seal/etc/tls/cert.pem

  4. Save the CA certificate to the following file:

    /opt/seal/etc/tls/ca.pem

  5. Configure the path to the directory containing the certificate files.

    env:
  service:
    any:
      tag:
        any:
          TLS_DIR: '/opt/seal/etc/tls'

  6. If self-signed certificates are used, the following key has to be set to 0:

    env:
  service:
    any:
      tag:
        any:
          NODE_TLS_REJECT_UNAUTHORIZED: '0'

  7. Restart SEAL Operator

Next Step

Continue with: Secure Consul

Back to top