4. cd conf/extra directory
Example: SSLCertificateFile "/u01/app/appadmin/product/servers/pactiprd/ssl/rsact01.crt"
Example: SSLCertificateKeyFile "/u01/app/appadmin/product/servers/pactiprd/ssl/rsact01.key"
8. Copy the server crt and key file to the location defined within the httpd-ssl.conf file.
step 2: Download the cert from the server.
openssl s_client -connect 10.4.10.1:7336 | tee cert
Step 5: Verify whether the cert got added to the keystore and check its information.
keytool -list -v -keystore keystore
Step x: If you want to print the cert
keytool -printcert -file file.cer
You can use openssl to test certificate store if running in a container such as java.
openssl s_client -connect bla:PORT -state -debug
If it errors out this will verify that there is a problem with the keystore.
No comments:
Post a Comment