Home
Configuring
Create a basic or an enterprise domain which is a single point for configuring and managing common resources, security, and instances.
Configuring transport mechanisms
Teracloud® Streams supports several high-performance and configurable transport mechanisms for communicating across processing elements (PEs). You can configure the transport mechanism by updating Teracloud Streams properties.
Encrypted PE connections properties for domains and instances
Use the domain.transportSecurityType and instance.transportSecurityType properties to enable or disable encrypted connections between processing elements (PEs). By default, connections between PEs are encrypted.

Welcome
Learn about the core capabilities of Teracloud® Streams, its architecture, and key concepts.
Installing
Use this information to install, upgrade, and uninstall the Teracloud® Streams product.
Configuring
Create a basic or an enterprise domain which is a single point for configuring and managing common resources, security, and instances.
- Setting up a basic domain on a single resource
  A basic domain has a single Teracloud® Streams resource and user. This type of domain is typically used for test or development environments.
- Setting up an enterprise domain on multiple resources
  An enterprise domain can have multiple resources and users. This type of domain is typically used for production environments. You can configure high availability to ensure that Teracloud® Streams can continue to run even if resources fail or are not available.
- Configuring security
  Each Teracloud® Streams domain and instance maintains its own security configuration.
- Configuring audit logging
  Teracloud® Streams supports comprehensive, multiple-level auditing of product and user operations. By default, audit logging is not enabled.
- Configuring transport mechanisms
  Teracloud® Streams supports several high-performance and configurable transport mechanisms for communicating across processing elements (PEs). You can configure the transport mechanism by updating Teracloud Streams properties.
  - Application network properties for domains and instances
    Use the domain.applicationNetwork and instance.applicationNetwork properties to specify the subnetworks that are used by the Teracloud® Streams data transport mechanism for instance jobs and PEs.
  - Encrypted PE connections properties for domains and instances
    Use the domain.transportSecurityType and instance.transportSecurityType properties to enable or disable encrypted connections between processing elements (PEs). By default, connections between PEs are encrypted.
    - Performance considerations
      The TLS value that you specify for the transportSecurityType property can impact PE connection performance. Teracloud® Streams supports TLS v 1.2 and later protocols.
- Configuring a checkpoint data store
  Use this procedure to configure a checkpoint data store for Teracloud® Streams domains and instances.
Administering
Administer the product by using the Teracloud® Streams graphical user interface, APIs, or the streamtool command-line interface.
Developing
Develop stream applications with the Streams Processing Language (SPL), Java, and Python.
Troubleshooting
Resolve problems with Teracloud® Streams using the troubleshooting tools provided with the product as well as the resources offered by Teracloud Support.
Reference
Find details on the SPL language, toolkits, APIs, commands, and more.
Glossary
Use this glossary to find terms and definitions for Teracloud® Streams.

Encrypted PE connections properties for domains and instances

Use the domain.transportSecurityType and instance.transportSecurityType properties to enable or disable encrypted connections between processing elements (PEs). By default, connections between PEs are encrypted.

The transportSecurityType properties support the following Transport Layer Security (TLS) cryptographic protocols:

TLSv1.3 - For TLS 1.3
TLSv1.2 - For TLS 1.2
none - For no encryption

The domain.transportSecurityType property is set to TLSv1.3 by default. Teracloud® Streams instances will use the value specified by the instance.transportSecurityType property if set, or else fall back to the value of the domain.transportSecurityType property.

Notes: TLS 1.3 or later is recommended for Teracloud® Streams.

To display the value of the instance.transportSecurityType property for an instance, use the streamtool getproperty command. To set this property for an instance, use the streamtool setproperty command.

The following example specifies that TLS 1.3 or later is used to encrypt connections between PEs:

streamtool setproperty instance.transportSecurityType=TLSv1.3

The following example shows how to disable encryption:

streamtool setproperty instance.transportSecurityType=none

Note: If Teracloud® Streams cannot establish a connection with the specified protocol, check the PE and processing element container service (PEC) logs. The following examples are typical causes of failure to connect errors:

The openssl RPM is not installed. This RPM is required for an encrypted connection. Ensure that you install the version of the openssl RPM that is required by Teracloud® Streams and checked by the dependency checker script.
In this case, the PEC crashes with an informational message. If you run the streamtool lspes command, the PE is in Stopped state.
A network failure occurs.
In this case, Teracloud® Streams continues to retry the connection until it succeeds.
The target PE does not authenticate with the proper security protocol.
In this case, Teracloud® Streams continues to retry the connection until it succeeds.