Linux Machine: Keytool should be from
/opt/jdk1.6.0_29/bin/keytool
1. /opt/jdk1.6.0_29/bin/keytool -genkey -alias jbosskey -keypass crchome -keyalg RSA -keystore crcSecurePages.keystore
Password: crchome
What is your first and last name?
[Unknown]: Chain Reaction
What is the name of your organizational unit?
[Unknown]: Cycles
What is the name of your organization?
[Unknown]: CRC
What is the name of your City or Locality?
[Unknown]: Doagh
What is the name of your State or Province?
[Unknown]: Northern Ireland
What is the two-letter country code for this unit?
[Unknown]: UK
Is CN=Chain Reaction, OU=Cycles, O=CRC, L=Doagh, ST=Northern Ireland, C=UK correct?
[no]: Y
2. /opt/jdk1.6.0_29/bin/keytool -list -keystore crcSecurePages.keystore
3./opt/jdk1.6.0_29/bin/keytool -export -alias jbosskey -keypass crchome -file crcSecurePages.crt -keystore crcSecurePages.keystore
4. /opt/jdk1.6.0_29/bin/keytool -import -alias jbosscert -keypass crchome -file crcSecurePages.crt -keystore crcSecurePages.keystore
Do you still want to add it? [no]: Y
5. /opt/jdk1.6.0_29/bin/keytool -list -keystore crcSecurePages.keystore
Enter keystore password: crchome
6. Edit "<C:/yourServerLocation>/server/ crc_ca/deploy/jbossweb.sar/server.xml"
b. Uncomment the section that begins with <Connector port="8443"
c. At the end of the section (but still inside of it) add:
i. keystoreFile="<C:/yourServerLocation>/server/ crc_ca/conf/ crcSecurePages.keystore"
ii. keystorePass="crchome"
1. 7. Ensure that you start the server with: (For Ex: run -c crc_ca -b localhost or IPAddress -Djavax.net.ssl.trustStore=C:/CRC/jboss-eap-5.1/jboss-as/server/crc_ca/conf/crcSecurePages.keystore)
a. -c crc_ca -b 0.0.0.0 -Djavax.net.ssl.trustStore="<C:/yourServerLocation>/server/crc_ca/conf/crcSecurePages.keystore"
b. Where -c specfies your server type
c. Where -b is required to use the server as anything but localhost, with a server name if you only have 1 network card, with 0.0.0.0 if you have multiple network cards
d. -Djavax.net.ssl.trustStore specifies the location of your truststore.
e. In Windows you may place these parameters in a shortcut you use to execute run.bat.
f. In Unix you may place them in your startup script.
/opt/jdk1.6.0_29/bin/keytool
1. /opt/jdk1.6.0_29/bin/keytool -genkey -alias jbosskey -keypass crchome -keyalg RSA -keystore crcSecurePages.keystore
Password: crchome
What is your first and last name?
[Unknown]: Chain Reaction
What is the name of your organizational unit?
[Unknown]: Cycles
What is the name of your organization?
[Unknown]: CRC
What is the name of your City or Locality?
[Unknown]: Doagh
What is the name of your State or Province?
[Unknown]: Northern Ireland
What is the two-letter country code for this unit?
[Unknown]: UK
Is CN=Chain Reaction, OU=Cycles, O=CRC, L=Doagh, ST=Northern Ireland, C=UK correct?
[no]: Y
2. /opt/jdk1.6.0_29/bin/keytool -list -keystore crcSecurePages.keystore
3./opt/jdk1.6.0_29/bin/keytool -export -alias jbosskey -keypass crchome -file crcSecurePages.crt -keystore crcSecurePages.keystore
4. /opt/jdk1.6.0_29/bin/keytool -import -alias jbosscert -keypass crchome -file crcSecurePages.crt -keystore crcSecurePages.keystore
Do you still want to add it? [no]: Y
5. /opt/jdk1.6.0_29/bin/keytool -list -keystore crcSecurePages.keystore
Enter keystore password: crchome
6. Edit "<C:/yourServerLocation>/server/ crc_ca/deploy/jbossweb.sar/server.xml"
b. Uncomment the section that begins with <Connector port="8443"
c. At the end of the section (but still inside of it) add:
i. keystoreFile="<C:/yourServerLocation>/server/ crc_ca/conf/ crcSecurePages.keystore"
ii. keystorePass="crchome"
1. 7. Ensure that you start the server with: (For Ex: run -c crc_ca -b localhost or IPAddress -Djavax.net.ssl.trustStore=C:/CRC/jboss-eap-5.1/jboss-as/server/crc_ca/conf/crcSecurePages.keystore)
a. -c crc_ca -b 0.0.0.0 -Djavax.net.ssl.trustStore="<C:/yourServerLocation>/server/crc_ca/conf/crcSecurePages.keystore"
b. Where -c specfies your server type
c. Where -b is required to use the server as anything but localhost, with a server name if you only have 1 network card, with 0.0.0.0 if you have multiple network cards
d. -Djavax.net.ssl.trustStore specifies the location of your truststore.
e. In Windows you may place these parameters in a shortcut you use to execute run.bat.
f. In Unix you may place them in your startup script.
No comments:
Post a Comment