IBM QRadar SOAR: Configuring HTTP Address and TLS/SSL settings
Managing Keystore with Keytool
1) Connect to CLI, using resadmin user
2) Backup keystore
cd /crypt/certs
cp keystore keystore_backupYYYYMMDD
3) Use the following command to list all entries in the keystore with detailed information:
keytool -list -v -keystore keystore -storepass "$(sudo resutil keyvaultget -name keystore)"
4) Delete an alias from the keystore ==
To remove a specific alias (e.g., `co3`) from the keystore:
keytool -delete -alias co3 -keystore keystore \
-storetype PKCS12 \
-storepass "$(sudo resutil keyvaultget -name keystore)"
5) Import a certificate into the keystore
To import a .pfx/.p12 certificate into the keystore under a new alias:
keytool -importkeystore \
-srckeystore /home/resadmin/certificates/certificate.pfx \
-srcstoretype pkcs12 \
-srcalias <SRC ALIAS> \
-destkeystore keystore \
-destalias co3 \
-deststorepass "$(sudo resutil keyvaultget -name keystore)" \
-destkeypass "$(sudo resutil keyvaultget -name keystore)"
Change HTTP Address (default url)
sudo resutil configset -baseurl "https://soar.company.com"