Uploaded image for project: 'Grouper'
  1. Grouper
  2. GRP-3027

document how to add a cert to the trust store in the container

    XMLWordPrintable

Details

    • Documentation
    • Resolution: Unresolved
    • Minor
    • None
    • None
    • None
    • None

    Description

      Do we need to mount cacerts?

       

      wget https://confluence.atlassian.com/kb/files/779355358/779355357/1/1441897666313/SSLPoke.class
      		 
       
      		 
      java SSLPoke jira.example.com 443
      		 
       
      		 
      openssl s_client -connect jira.example.com:443
      		 
       
      		 
      openssl x509 -in ad_cert.pem -out ad_cert.der -outform DER
      		 
       
      		 
      chmod +w $JAVA_HOME/jre/lib/security/cacerts
      		 
       
      		 
      $JAVA_HOME/bin/keytool -import -keystore $JAVA_HOME/jre/lib/security/cacerts -file ad_cert.der -alias ad_cert
      		 
       
      		 
      mkdir -p slashRoot/usr/lib/jvm/java-1.8.0-amazon-corretto/jre/lib/security
      		 
       
      		 
      docker cp grouper-ui:/usr/lib/jvm/java-1.8.0-amazon-corretto/jre/lib/security/cacerts slashRoot/usr/lib/jvm/java-1.8.0-amazon-corretto/jre/lib/security/

       

      Attachments

        Activity

          People

            chris.hyzer@at.internet2.edu Chris Hyzer (upenn.edu)
            chris.hyzer@at.internet2.edu Chris Hyzer (upenn.edu)
            Votes:
            0 Vote for this issue
            Watchers:
            1 Start watching this issue

            Dates

              Created:
              Updated: