You can use a private key and public certificate (either a self-signed or a Certificate Authority certificate) from a different source. For example, your security team provides an SSL certificate that is customized for your organization. To use this SSL certificate, import the private key and the signed certificate.
Follow these steps:
cd /opt/CA/PerformanceCenter/jetty-version/etc
rm keystore
openssl pkcs12 -export -in certificate.pem -inkey privatekey.pem -name MyAlias -out keystore.pkcs12
Specifies the certificate provided to you.
Specifies the private key provided to you.
Note: This command works on Linux only.
keytool -importkeystore -destkeystore keystore_file -deststorepass storepasswd -srckeystore keystore.pkcs12 -srcstoretype pkcs12 -srcalias src_alias_name -destalias dest_alias_name -destkeypass keypasswd
/sbin/service caperfcenter_sso restart
/sbin/service caperfcenter_devicemanager restart
/sbin/service caperfcenter_console restart
Your existing SSL certificate is imported into the keystore.
Next step: Configure the port and website to support HTTPS.
Note: Import the certificate into the Java cacerts keystore if the certificate does not include a chain that terminates at a certificate in the keystore. Run the following command to determine whether the certificate includes the chain:
keytool -printcert -file filename
Specifies the name of the certificate.
See Generate and Import a Certificate for instructions on importing a certificate into the Java cacerts keystore.
|
Copyright © 2014 CA Technologies.
All rights reserved.
|
|