Page History

...

• On the Controller server create the truststore using the keytool from your Java JRE or JDK or a third party utility.
  • For use with a third party utility create a truststore, e.g. https-truststore.p12, in PKCS12 format and import:
    • the Root CA Certificate
  • The examples below show one possible approach for certificate management. However, there are other ways to achieve similar results.
    

    • Example for importing a Root CA Certificate to a PKCS12 truststore:

      Code Block
      language bash title Example how to import a Root CA Certificate into a PKCS12 Truststore
      # import Root CA certificate in PEM format to a PKCS12 truststore (https-truststore.p12) keytool -importcert -alias "root-ca" -file "RootCACertificateroot-ca.crt" -keystore "JS7_CONTROLLER_CONFIG_DIR/private/https-truststore.p12" -storetype PKCS12

• On the Controller server specify the location of the truststore with the JS7_CONTROLLER_CONFIG_DIR/private/private.conf configuration file:

  • Example

    Code Block
    language text title Example for private.conf file specifying the Controller truststore
    js7 { web { # keystore and truststore locations for https connections https { truststores=[ { # Default: ${js7.config-directory}"/private/https-truststore.p12" file=${js7.config-directory}"/private/https-truststore.p12" store-password=jobscheduler } ] } } }

    
    

    Explanation:
    • js7.web.https.truststores.file is used for the path to the truststore.
    • js7.web.https.truststores.store-password is used for access to the truststore.

...

• JS7 - JOC Cockpit HTTPS Connections
• JS7 - Controller HTTPS Connections
• JS7 - Configuration Templates
  • JS7 - Configuration for mutual HTTPS Server Authentication and Client Authentication
  • JS7 - Configuration for HTTP Basic Authentication with Passwords
  • JS7 - Configuration for HTTPS Server Authentication with Passwords
• JS7 - How to create self-signed Certificates
• JS7 - How to add SSL TLS Certificates to Keystore and Truststore