Skip to content

SEAL Print Client

1.0.0

1.0.0

Vault Encryption

SEAL Print Client

About
Overview
Windows
Windows
- Get Started
- Preconditions
- Installation
  Installation
  - Requirements
  - Install SEAL Print Client
- Configuration
  Configuration
  - Mandatory Configuration
    Mandatory Configuration
    
    Mandatory Configuration - Overview
    
    Configure the Backend Systems
    
    Configure the Connectors
  - Security Configuration
    Security Configuration
    
    Security Configuration - Overview
    
    Security Configuration (TLS)
    Security Configuration (TLS)
    
    HTTP/TLS Encryption - Overview
    
    TLS Certificates
    
    Consul
    
    MongoDB
    
    Keycloak
    
    Vault
    
    Security Configuration (General)
    Security Configuration (General)
    
    Consul
    
    Keycloak
    
    Vault
  - Optional Configuration
    Optional Configuration
    
    Obligatory System Configuration - Overview
    
    Configure MS ADFS 3.0 as Brokered Identity Provider in Keycloak
    
    Panel Configuration
    
    Shopping Cart Printing
    
    Configure Additional Languages for the User Interface
    
    Color Mode Black & White
- System Components
  System Components
Linux
Linux
- Preconditions
- Get Started
- Installation
  Installation
  - Requirements
  - Installation
- Configuration
  Configuration
  - Basic System Configuration
    Basic System Configuration
    
    Overview
    
    Configure the Operator Server
    
    Configure the Connectors
  - Advanced System Configuration
    Advanced System Configuration
    
    Configure MS ADFS 3.0 as Brokered Identity Provider in Keycloak
    
    Configure Additional Languages for the User Interface
- Secure Data Transfer
  Secure Data Transfer
  - Overview
  - TLS Encryption
  - TLS Encryption with CA
  - Administrate Consul Keys
  - Keycloak Encryption
  - Vault Encryption Vault Encryption
    Table of contents
    
    Replace the Pre-Installed Keys
    
    Restart the Seal-Vault Service
- Description
  Description
SEAL Print Client User Interface
SEAL Print Client User Interface
- SEAL Print Client User Interface
SEAL Print Client CLI
SEAL Print Client CLI
Use Cases
Use Cases
- This page is still under construction!
Reference
Reference
- SEAL Operator Server REST API
- SEAL Operator Server Configuration File
- Keys
- JSON Schema
- Ports
- Directories and Files
  Directories and Files
  - Linux
    Linux
    
    Directories and Files
  - Windows
    Windows
    
    Directories and Files
Release Notes
Release Notes
- Operator
- seal-operator-dpf
- seal-operator-fileupload
- seal-operator-p4
- seal-operator-p5
- seal-operator-sap
- seal-operator-server
- None
- 1.0.0.1121
  1.0.0.1121
  - Operator
  - seal-operator-p4
- 1.0.0.1240
  1.0.0.1240
- 1.0.0.1326
  1.0.0.1326
- 1.0.0.1460
  1.0.0.1460
  - Operator
- 1.0.0.382
  1.0.0.382
  - SEAL Operator
- 1.0.0.481
  1.0.0.481
  - SEAL Operator
- 1.0.0.934
  1.0.0.934
- 1.0.0.964
  1.0.0.964
  - Operator
  - seal-operator-p4

Vault Encryption¶

Vault manages the user credentials for the backend systems.

Replace the Pre-Installed Keys¶

Vault starts in the developers mode after the installation. For security reasons, the following configuration steps are recommended:

Configure the settings for the file storage and the data transfer encryption in /opt/seal/infrastructure/config/vault.hcl:

storage "file" {
  path = "/opt/seal/infrastructure/data/vault/"
}

listener "tcp" {
  address     = "0.0.0.0:8200"
  tls_disable = false
  tls_cert_file = "/opt/seal/infrastructure/config/tls/cert.pem"
  tls_key_file = "/opt/seal/infrastructure/config/tls/key.pem"
}

As administrator, create the root token and the unseal key using the following script:
- /opt/seal/infrastructure/seal-vault/secure-vault.sh
Hint - memorize the root token and unseal key

Memorize the generated root token and the unseal key. You need the unseal key whenever restarting the seal-vault service.

Restart the `Seal-Vault` Service¶

vault operator unseal -format=json -tls-skip-verify <unsealKey>