12/19/2023 0 Comments Keystore explorer renew certificateTo generate the file, run the following command: Save and exit the sslconfig.properties file. Keystore.location=$INGESTER_HOME/conf/ingester.jks Truststore.location=$INGESTER_HOME/conf/saastruststore.jks Perform the above step for the truststore.password, the keystore.password, and the key.password.Įdit the template sslconfig.properties file for the new Remote Ingester in the conf folder. Replace the example password with the actual truststore password. Generate the value for truststore.password. Generate the sslconfig.properties with the hashed password for the truststore, keystore and client key. Click a properties file below to generate that file for the Remote Ingester. The keystore is ready to be moved to the server.Īfter you have created the SSL certificates, the keystores, and truststores for the Remote Ingester, you can configure the properties file. Select the server certificate file, and click Import.Įnter the Key Pair entry password, then click OK. Import the SSL certificate into the Ingester keystore, then click OK.Įnter the decryption password associated with the certificate file. Right click, select Export > Export Key Pair.Įnter the password for the certificate file, then click Export. Select the master keystore, and select the server certificate to export to a file.Keep the keystore open to import the correct SSL certificate in step 15 and 16. Save the keystore as ingester.jks under the folder: "/Securonix/Ingester/conf".Right click on the untitled keystore name, and click Save. The Ingester keystore is a Java key store. Select JKS as the keystore type, then click OK. Exclude symbols and ambiguous characters. Tip: Use to generate a strong password (16 characters, upper and lowercase letters, symbols, special characters). Right click and select Sign > Sign New Key Pair.Įnter the key password for the certificate.Īccept the defaults, and enter the Name details. Tip: You can download the KeyStore Explorer at. The KeyStore Explorer is an open source utility to open the master keystore (used in the image below). Open your master keystore using a tool of your choice if you have stored your SSL Certificate in the master keystore. This section includes the Secure Sockets Layer (SSL) configuration process for the Remote Ingester, which consists of two parts, including: The same truststore is used by all the Remote Ingesters. This contains the certificate trust chain for theSecuronixinfrastructure. The truststore for the Securonix environment. This id is used for access control in the environment. The certificate is used for mutual authentication to access theSecuronixenvironment. This keystore contains a unique certificate keypair for each customer, with a common name that is equal to the Remote Ingester server name. The client keystore for access to theSecuronixenvironment. Each Remote Ingester also uses a truststore for the environment this truststore is the same for all the Remote Ingesters. Depending on the number of Remote Ingesters in your environment, you must have an SSL certificate generated for each of them.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |