Renew SSL certificate OpenDJ…

Tagged: 

This topic contains 0 replies, has 1 voice, and was last updated by Profile photo of marc.sahin marc.sahin 1 week, 4 days ago.

  • Author
    Posts
  • #15830
    Profile photo of marc.sahin marc.sahin 
    Participant

    Hello,

    We will renew the CA signed ssl certificate of OpenDJ(2.5.1).

    I follow the the documentation to create a new CA signed certificate and install it into OpenDJ.

    Changing Server Certificates :
    https://backstage.forgerock.com/docs/opendj/2.6/admin-guide/chap-change-certs

    To Request and Install a CA-Signed Certificate :
    https://backstage.forgerock.com/docs/opendj/2.6/admin-guide/chap-connection-handlers#new-ca-signed-cert

    However, there are some points that I don’t understand :
    In the first step, we create a keystore than generate a csr from that and receive the ssl cert from CA.
    I’m wondering if the private key is the certificate into that keystore ?
    Otherwise, where is the private key ?

    In the fifth Step, we replace the server-cert which is created in first step with CA signed certificate.
    Is it normal that we overwrite this certificate ?

    It would be great if you could help me out.
    Thank you in advance
    Marc

Viewing 1 post (of 1 total)

You must be logged in to reply to this topic.

©2017 ForgeRock - we provide an identity and access platform to secure every online relationship for the enterprise market, educational sector and even entire countries. Click to view our privacy policy and terms of use.

Log in with your username and password

Lost your password?

Forgot your details?