Versions Compared

Old Version 29

changes.mady.by.user MS

Saved on

compared with

New Version 30

changes.mady.by.user MS

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...

Warning

This section describes how to use self-signed certificates for a test environment ONLY.
To create self-signed certificates, we recommend that you install and use a current version of OpenSSL and current encryption algorithms.

...

  1. Log in to the Remote services server

  2. Go to the /etc/pki/tls/ folder

  3. Copy your self-signed certificate(s) to the certs folder and your private key to the private folder

  4. Convert the remote RS cert to PCKS12 format, using the domain name of your Remote services server.

    Code Block
    openssl pkcs12 -export -in ${DOMAIN}.crt -inkey ${DOMAIN}.key -name ${REMOTE_SERVICES_FQDN} -out import_cert_key_rs

  5. Convert the Abiquo Server cert to PCKS12 format, using the domain name of your Abiquo Server.

    Code Block
    openssl pkcs12 -export -in ${DOMAIN}.crt -inkey ${DOMAIN}.key -name {$ABIQUO_SERVER_FQDN} -out import_cert_key_server

  6. Go the /opt/abiquo/tomcat/conf folder

  7. Create a .jks keystore using the following command. Replace ${REMOTE_SERVICES} with the hostname of your Remote services server

    Code Block
    keytool -genkey -keyalg RSA -keystore ${REMOTE_SERVICES}.jks -keysize 2048

  8. Import the Remote services certificate into the RS keystore.

    Code Block
    keytool -importkeystore -deststorepass changeit -destkeystore ${REMOTE_SERVICES}.jks -srckeystore /etc/pki/tls/certs/import_cert_key_rs -srcstoretype PKCS12

  9. Import the Server certificate into the RS keystore.

    Code Block
    keytool -importkeystore -deststorepass changeit -destkeystore ${REMOTE_SERVICES}.jks -srckeystore /etc/pki/tls/certs/import_cert_key_server -srcstoretype PKCS12

...