![]() Import certs into the keystore in the following order rootca, interca then the final certificate (if you don’t have a intermediate ca don’t run that one).Import the Certificates into the Keystore Export the root ca and intermediate ca certificates and put these on the server in the ssmcbase\etc folder with the newly signed cert.Take the cert req data and get the cert signed from your CA.Noting the -ext to get the SAN into the cert req C:\Program Files\Hewlett Packard Enterprise\SSMC\ssmcbase\etc>”C:\Program Files\Hewlett Packard Enterprise\SSMC\jre\bin\keytool” -certreq -keystore keystore -alias jetty -ext SAN=dns: fqdn,ip: x.x.x.x -file newcert.txt.Substitute required info for FQDN and X and ip x.x.x.x.C:\Program Files\Hewlett Packard Enterprise\SSMC\ssmcbase\etc>”C:\Program Files\Hewlett Packard Enterprise\SSMC\jre\bin\keytool” -genkeypair -keystore keystore -alias jetty -dname “CN= FQDN, OU= X, O= X, L= X, ST= X, C= X” -keyalg RSA -ext SAN=DNS: fqdn,ip: x.x.x.x.Type the following command and substitute in the required details of IP, FQDN, OU, O,L,ST,C, these relate to Org Unit, Organisation, Location, State, Country. ![]() ![]()
0 Comments
Leave a Reply. |
Details
AuthorWrite something about yourself. No need to be fancy, just an overview. Archives
January 2023
Categories |