Certificados TLS: Difference between revisions

From Wiki
(Criou a página com "= OpenSSL Cheat Sheet = # Download do certificado openssl s_client -connect <HOST:PORT> </dev/null | sed -ne '/-BEGIN CERTIFICATE-/,/-END CERTIFICATE-/p' > <NOME_DO-ARQUI...")
 
Line 5: Line 5:
  openssl s_client -connect <HOST:PORT> </dev/null | sed -ne '/-BEGIN CERTIFICATE-/,/-END CERTIFICATE-/p' > <NOME_DO-ARQUIVO.cer>
  openssl s_client -connect <HOST:PORT> </dev/null | sed -ne '/-BEGIN CERTIFICATE-/,/-END CERTIFICATE-/p' > <NOME_DO-ARQUIVO.cer>


  ikeycmd -cert -add -db "<wlp_root>/usr/servers/defaultServer/resources/security/key.jks" \-file "NOME_DO-ARQUIVO.cer" -pw <PASSWORD> -label <LABEL_CERTIFICADO> > /dev/null
  ikeycmd -cert -add -db "key.jks" \-file "NOME_DO-ARQUIVO.cer" -pw <PASSWORD> -label <LABEL_CERTIFICADO> > /dev/null


= iKeyCmd Cheat Sheet =
= iKeyCmd Cheat Sheet =

Revision as of 12:24, 29 September 2022

OpenSSL Cheat Sheet

  1. Download do certificado
openssl s_client -connect <HOST:PORT> </dev/null | sed -ne '/-BEGIN CERTIFICATE-/,/-END CERTIFICATE-/p' > <NOME_DO-ARQUIVO.cer>

ikeycmd -cert -add -db "key.jks" \-file "NOME_DO-ARQUIVO.cer" -pw <PASSWORD> -label <LABEL_CERTIFICADO> > /dev/null

iKeyCmd Cheat Sheet

  1. List certificates
ikeycmd -cert -list personal -db "key.kdb" -pw changeit

ikeycmd -cert -list ca -db "key.kdb" -pw changeit
  1. Add a client certificate to keystore
ikeycmd -cert -add -db "key.kdb" -label ibmwebspheremqclient01 -file ibmwebspheremqclient01.crt -format ascii -pw changeit
  1. Remove certificate from keystore (using stashed password)
ikeycmd -cert -delete -label ibmwebspheremqclient01 -db "key.kdb" -stashed
  1. Set default certificate
ikeycmd -cert -setdefault -db key.kdb -label "mydefaultcertificate" -pw changeit
Retrieved from "https://ebasso.net/wiki/index.php?title=Certificados_TLS&oldid=7776"