...
JOC_HOME
is the installation path which is specified during the JOC Cockpit installation:- C:\Program Files\sos-berlin.com\joc (default on Windows)
- /opt/sos-berlin.com/joc (default on Linux)
JETTY_HOME
=JOC_HOME
/jettyJETTY_BASE
is Jetty's base directory which is specified during the JOC Cockpit installation:- C:\ProgramData\sos-berlin.com\joc (default on Windows)
- /home/<setup-user>/sos-berlin.com/joc (default on Linux)
Step 1: Create
...
Truststore and import your certificate to the JOC Cockpit Web Service Truststore
The following steps are performed on the server that hosts the JOC Cockpit.
You can use the Java Keystore that will be created with the private key for the HTTPS support in Jetty. Please note that probably you have to create the
...
directory JETTY_BASE/etc
Example
Code Block title Sample for
generate Keystore with private key and import master certificate keytool -
genkeyimportcert -
alias "joc"noprompt -
dnamefile "
CN=jocHost,O=myCompanymy_LDAP_Certificate.pem" -
validity 1461 -keyalg RSA -keysize 1024 -keypass secret_keyalias "my_alias" -keystore "JETTY_BASE/etc/joc.jks" -storepass secret_store
- Replace the
JETTY_BASE
placeholder as specified above. - The
-dname
option specifies the certificate issuer, therefore use your own set of CN, OU, DC that specify the issuer's distinguished name. The O setting is required for the issuer. The -trustcacerts
Explanations
-keypass
option accepts the password that you will need later on to manage your private key. - The
-keystore
option specifies the location of your Keystore Truststore file. - The
-storepass
option specifies the password for access to your Keystore file.
...
- your Truststore file.
- The file my_LDAP_Certificate.pem has been created on the LDAP server. Transfer this file to the local machine.
certutil -S -n "SOS_LDAP" -s "cn=myCn" -c "SOS_LDAP CA certificate" -t "u,u,u" -m 1001 -v 120 -d . -k rsa
certutil -L -d . -n "SOS_LDAP CA certificate" -a > my_LDAP_Certificate.pem
Step 2: Configure Jetty
Edit the following entries in the
JETTY_BASE/resources/joc/joc.properties
configuration file corresponding to the Java Keystore:Code Block truststore_path = ../../etc/joc.jks
Explanations- Specify the location of the Truststore with the
truststore_path
setting. A location relative to theJETTY_BASE
directory can be specified.
- Specify the location of the Truststore with the
Step 3: Import your certificate to the JOC Cockpit Web Service Truststore
...
- .
...
Example
title | Sample for import master certificate |
---|