DescriptionImport a 3rd Party SSL Certificate for On Premise Analytics (centOS 5)
ScopeVersion: Analytics running centOS 5
SolutionVersion: Analytics running centOS 5
If server running centOS 7, see Import a Certificate for On Premise Analytics
On Premise Analytics requires a certificate be imported into the keystore prior to being able to access the admin GUI for further configuration. The import requires a 3rd party SSL certificate or self signed certificate be imported into the keystore. This solution goes over how to import a 3rd party SSL certificate into the keystore.
This procedure presumes the SSL certificate request has already been generated and the certificate files (in PEM format) have been provided by the Certificate Authority (CA):
server.key = private key
server.crt = leaf certificate
Bundle.crt = certificate bundle (intermediate and root certificates)
Procedure:
1. Copy the files from the CA to the /bsc/services/jboss directory of the Analytics Server.
2. If several intermediate certificate files are received (as opposed to a single bundle), the files should be merged into a bundle. Complete the steps in Create SSL Certificate Bundle with Files Returned from Certificate Authority before proceeding.
3. Login to the Analytics Server CLI as root and type
cd /bsc/services/jboss
4. Create the keystore file. Type
keytool -noprompt -import -keystore /bsc/services/jboss/keystore.jks -file server.crt -storepass cchaos
5. Import the certificates and private key into the keystore. Type
ImportCertificateWithKey -import -keystore /bsc/services/jboss/keystore.jks -key server.key -cert server.crt -cas Bundle.crt -storepass cchaos -alias root –force
6. Restart the jboss server. Type
/etc/init.d/jboss restart
