WLP: Adicionando um certificado TLS como confiável na Liberty trust store: Difference between revisions
(Criou a página com "== Ver também == * Mais Artigos sobre WebSphere Application Server Category: WebSphere Application Server [[Category: WAS Liberty]...") |
No edit summary |
||
Line 1: | Line 1: | ||
= | = Procedimento = | ||
1) Vá ao diretório do Liberty | |||
cd <wlp_root>/usr/servers/defaultServer/resources/security | |||
2) Download do certificado | |||
openssl s_client -connect <HOST:PORT> </dev/null | sed -ne '/-BEGIN CERTIFICATE-/,/-END CERTIFICATE-/p' > <NOME_DO-ARQUIVO.cer> | |||
3) Removendo caso já exista | |||
<IHS_HOME>/java/8.0/jre/bin/java com.ibm.gsk.ikeyman.ikeycmd -cert -delete -db "<wlp_root>/usr/servers/defaultServer/resources/security/key.jks" \ | |||
-pw <PASSWORD> -label <LABEL_CERTIFICADO> > /dev/null | |||
4) Salvando no key store do Liberty | |||
<IHS_HOME>/java/8.0/jre/bin/java com.ibm.gsk.ikeyman.ikeycmd -cert -add -db "<wlp_root>/usr/servers/defaultServer/resources/security/key.jks" \ | |||
-file "<wlp_root>/usr/servers/defaultServer/resources/security/NOME_DO-ARQUIVO.cer" \ | |||
-pw <PASSWORD> -label <LABEL_CERTIFICADO> > /dev/null | |||
= Ver também = | |||
* [[WebSphere Application Server| Mais Artigos sobre WebSphere Application Server]] | * [[WebSphere Application Server| Mais Artigos sobre WebSphere Application Server]] | ||
Revision as of 19:41, 7 October 2019
Procedimento
1) Vá ao diretório do Liberty
cd <wlp_root>/usr/servers/defaultServer/resources/security
2) Download do certificado
openssl s_client -connect <HOST:PORT> </dev/null | sed -ne '/-BEGIN CERTIFICATE-/,/-END CERTIFICATE-/p' > <NOME_DO-ARQUIVO.cer>
3) Removendo caso já exista
<IHS_HOME>/java/8.0/jre/bin/java com.ibm.gsk.ikeyman.ikeycmd -cert -delete -db "<wlp_root>/usr/servers/defaultServer/resources/security/key.jks" \ -pw <PASSWORD> -label <LABEL_CERTIFICADO> > /dev/null
4) Salvando no key store do Liberty
<IHS_HOME>/java/8.0/jre/bin/java com.ibm.gsk.ikeyman.ikeycmd -cert -add -db "<wlp_root>/usr/servers/defaultServer/resources/security/key.jks" \ -file "<wlp_root>/usr/servers/defaultServer/resources/security/NOME_DO-ARQUIVO.cer" \ -pw <PASSWORD> -label <LABEL_CERTIFICADO> > /dev/null