Openssl pkcs12 -in gen/qa_keystore.p12 -nodes -nocerts -out gen/qa_key.key Keytool -importkeystore -alias apis01.qa -srckeystore cert_keystore.jks -destkeystore gen/qa_keystore.p12 -deststoretype PKCS12 <<”sandbox.p7r”<< d.) Generate the PEM and key with the following keytool and openssl commands Back to the sandbox keypair, right click sandbox keypair and select “import CA reply”.On intermediate cert that is in the main keystore, right click and choose Sign CSR,.Right click key pair and choose “Export CSR” and save in file >”sandbox.csr”>.
Set subject alternative name to the domain name “sandbox”.Import all three “cer” certificate back into the empty jks created above and then save to file in jks format.It will contain the URL and token information as shown. When you run the above command, the ingestercloud.properties file is automatically created. Replace the highlighted items with the appropriate values.Įxample: java -jar $INGESTER_HOME/Ingester/lib/ -url: -username:admin -password:'11bq2i4tbo9e' -tenant:a1t3fxvk Select Tentant-config from the left pane to view your tenant id. From the console, navigate to Menu > Administration > Settings.Ĭlick Hadoop from the left pane, and select your Hadoop distribution: Cloudera or Hortonworks.To obtain the for your environment, log into your SNYPR console. Java -jar $INGESTER_HOME/Ingester/lib/ -url: -username:admin -password:’’-tenant: To generate the file, run the following command: Save and exit the sslconfig.properties file. Keystore.location=$INGESTER_HOME/conf/ingester.jks Truststore.location=$INGESTER_HOME/conf/saastruststore.jks Perform the above step for the truststore.password, the keystore.password, and the key.password.Įdit the template sslconfig.properties file for the new Remote Ingester in the conf folder.
#KEYSTORE EXPLORER EXPORT CRT PASSWORD#
Replace the example password with the actual truststore password. Generate the value for truststore.password. Generate the sslconfig.properties with the hashed password for the truststore, keystore and client key. Click a properties file below to generate that file for the Remote Ingester. The keystore is ready to be moved to the server.Īfter you have created the SSL certificates, the keystores, and truststores for the Remote Ingester, you can configure the properties file. Select the server certificate file, and click Import.Įnter the Key Pair entry password, then click OK. Import the SSL certificate into the Ingester keystore, then click OK.Įnter the decryption password associated with the certificate file. Right click, select Export > Export Key Pair.Įnter the password for the certificate file, then click Export. Select the master keystore, and select the server certificate to export to a file.Keep the keystore open to import the correct SSL certificate in step 15 and 16. Save the keystore as ingester.jks under the folder: "/Securonix/Ingester/conf".Right click on the untitled keystore name, and click Save.
The Ingester keystore is a Java key store. Select JKS as the keystore type, then click OK. Exclude symbols and ambiguous characters. Tip: Use to generate a strong password (16 characters, upper and lowercase letters, symbols, special characters). Right click and select Sign > Sign New Key Pair.Įnter the key password for the certificate.Īccept the defaults, and enter the Name details.
#KEYSTORE EXPLORER EXPORT CRT DOWNLOAD#
Tip: You can download the KeyStore Explorer at. The KeyStore Explorer is an open source utility to open the master keystore (used in the image below). Open your master keystore using a tool of your choice if you have stored your SSL Certificate in the master keystore. The same truststore is used by all the Remote Ingesters. This contains the certificate trust chain for the Securonix infrastructure. The truststore for the Securonix environment. This id is used for access control in the environment. The certificate is used for mutual authentication to access the Securonix environment. This keystore contains a unique certificate key pair for each customer, with a common name that is equal to the Remote Ingester server name. The client keystore for access to the Securonix environment. Each Remote Ingester also uses a truststore for the environment this truststore is the same for all the Remote Ingesters. Depending on the number of Remote Ingesters in your environment, you must have an SSL certificate generated for each of them.
0 kommentar(er)
