...
| Code Block | ||
|---|---|---|
| ||
keytool -importkeystore -srckeystore /home/oracle/flexdeploydev.copeland.com.pfx -srcstoretype pkcs12 -destkeystore /home/oracle/flexdeploy.keystore -deststoretype JKS |
In case the certificate is shared in .pfx format, you can use it as is
| Code Block |
|---|
<Connector port="8443" protocol="HTTP/1.1" sslEnabledProtocols="TLSv1.2"
connectionTimeout="20000" maxThreads="200" SSLEnabled="true" secure="true"
maxHttpHeaderSize="16384" keystoreFile="/home/oracle/flexdeploy.pfx"
keystorePass="changeit" keyAlias="myalias" clientAuth="false" /> |
Or, you can convert it to jks format using below command
| Code Block | ||
|---|---|---|
| ||
keytool -importkeystore -srckeystore /home/oracle/flexdeploydev.copeland.com.pfx -srcstoretype pkcs12 -destkeystore /home/oracle/flexdeploy.keystore -deststoretype JKS |
On Unix, privileged ports (less than 1024) cannot be opened by a non-root user. The solution is to forward traffic from 443 to the port used above (8443). As root, update iptable rule to redirect the traffic from 443 to 8443.
...