- Create a location for the keystore, and create the keystore.
mkdir /home/www/etc/keystore chown www:www /home/www/etc/keystore cd /home/www/ssl/certs wget http://ca.mit.edu/mitca.crt openssl pkcs12 -in `hostname -f`-cert.pem -inkey ../private/`hostname -f`-key.pem -export -out `hostname -f`-keystore.p12 -nodes -CAfile mitca.crt $JAVA_HOME/bin/keytool -list -keystore `hostname -f`-keystore.p12 -storetype pkcs12 $JAVA_HOME/bin/keytool -importkeystore -srckeystore `hostname -f`-keystore.p12 -destkeystore `hostname -f`-keystore.jks -srcstoretype pkcs12 -deststoretype jks $JAVA_HOME/bin/keytool -import -file mitca.crt -keystore /home/www/etc/keystore/`hostname -f`-jmxremote.keystore -alias MITCA chown -R www:www /home/www
- Change the SASH Server options for the JMX keystore. Need to do this for the template file, and for each container.
sed -i s#'server.jks'#"`hostname -f`-jmxremote.keystore"#g $SASHSRV_HOME/conf/template/conf/sashsrv.conf sed -i s#'mapping.app.mit.edu.jks'#"`hostname -f`-jmxremote.keystore"#g $SASHSRV_HOME/conf/template/conf/sashsrv.conf for server in `ls -1 $SASHSRV_HOME/servers` do sed -i s#'server.jks'#"`hostname -f`-jmxremote.keystore"#g $SASHSRV_HOME/servers/${server}/conf/sashsrv.conf sed -i s#'mapping.app.mit.edu.jks'#"`hostname -f`-jmxremote.keystore"#g $SASHSRV_HOME/servers/${server}/conf/sashsrv.conf done
Overview
Content Tools
Activity