Install Apigee mTLS

After you have ensured that all nodes in your Private Cloud cluster meet all requirements and you have performed the tasks in Before you begin, you can install the apigee-mtls component.

(For information on performing an offline installation, see Install Edge apigee-setup utility on a node with no external internet connection.)

To install Apigee mTLS:

  1. Log in to a node as root (or use sudo with the commands). Which node you choose and the order in which you choose the nodes does not matter.
  2. Stop all Apigee services by using the stop command, as the following example shows:
    /opt/apigee/apigee-service/bin/apigee-all stop

    You do not restart the components until after you install and configure Apigee mTLS.

  3. Check that all services are stopped by using the status command, as the following example shows:
    /opt/apigee/apigee-service/bin/apigee-all status
  4. Install Apigee mTLS by executing the following command:
    /opt/apigee/apigee-service/bin/apigee-service apigee-mtls install

    This command installs the following RPMs with your Edge for the Private Cloud installation:

    • apigee-mtls
    • apigee-mtls-consul
  5. Repeat steps 1 through 4 on each node in the cluster.

After installing Apigee mTLS on all nodes in the cluster, perform the following steps:

  1. Configure apigee-mtls on all nodes as described in Configure Apigee mTLS.
  2. (Optional) Verify your configuration as described in Verify your configuration.

After you install Apigee mTLS on a node, when you restart components on that node, you must start the apigee-mtls component before any other component on that node.