...
Convert the X.509 certificate and private key to pkcs12 format:
Code Block $ openssl pkcs12 -export -chain -in server.crt -inkey private-key.pem -out server.p12 -name amc-server -CAfile ca.crt Enter Export Password: <export-password> Verifying - Enter Export Password: <export-password>
Convert the pkcs12 file to a keystore.
Execute the following command, making sure that the
keystore-password
andkey-password
match the HTTP configuration settings, seeĀ 4.3.1 HTTP Configuration Properties.Code Block $ keytool -importkeystore \ -deststorepass <keystore-password> -destkeypass <key-password> \ -destkeystore containter.keys -srckeystore server.p12 \ -srcstoretype PKCS12 -srcstorepass <export-password> -alias platform
Note title Note! The default keystore alias for the certificate is
platform
but can be reconfigured, see 4.3.1 HTTP Configuration Properties. If this has been done, change the alias in the command provided above.You can now use the keystore file, container.keys, as described in the section Setting Up with an Existing Keystore File.
Page Properties | ||
---|---|---|
| ||