Creating and uploading a management certificate and keystore

  1. Navigate to your JAVA_HOME directory to run the following commands.
     
  2. Create the PFX file representing the client.
     keytool -genkey -alias <Name of key> -keystore <Name of keystore>.pfx -storepass <Password to use> -validity 3650 -keyalg RSA -keysize 2048 -storetype pkcs12 -dname "CN=Self Signed Certificate 20141118170652"
     
  3. Generate the certificate from the PFX file. For this, use the values specified in step 2.
    keytool -export -alias <Name of key> -storetype pkcs12 -keystore <Name of keystore>.pfx -storepass <Password> -rfc -file <Name of key>.cer
     
  4. Log into the Azure Portal at https://manage.windowsazure.com. Go to Settings, then click 'Management Certificates' at the top. At the bottom of the Management Certificates page, click 'Upload', then choose the .cer file created in step 3.
     
  5. Generate the Java keystore, this is needed for FlexDeploy to access Azure. Create the JKS, then put it on any FlexDeploy endpoint that will run Azure plugin operations.
     keytool -importkeystore -srckeystore <Name of keystore>.pfx -destkeystore <Name of JKS>.jks -srcstoretype pkcs12 -deststoretype JKS
     

After this, follow the steps in "Adding FlexDeploy to your Azure Active Directory"