Custom SSL Certificate setup instructions

From 360Works Product Documentation Wiki
(Difference between revisions)
Jump to: navigation, search
(Created page with "MirrorSync server runs in Java, and it needs to be able to communicate with the FileMaker Web Publishing Engine. If you have an SSL certificate installed on your web server th...")
 
Line 7: Line 7:
 
cd /Library/Java/Home/lib/security/
 
cd /Library/Java/Home/lib/security/
  
Now run the following command to add the certificate to your keystore (replace /path/to/theCertificate.com with the path to the certificate that you exported in step 1, and replace myServerName with a word-word description of your server):
+
Now run the following command to add the certificate to your keystore (replace /path/to/theCertificate.com with the path to the certificate that you exported in step 1, and replace myServerName with some descriptive name of your server):
  
 
sudo keytool -importcert -file /path/to/theCertficate.com -trustcacerts -alias myServerName -keystore cacerts
 
sudo keytool -importcert -file /path/to/theCertficate.com -trustcacerts -alias myServerName -keystore cacerts

Revision as of 20:32, 24 October 2012

MirrorSync server runs in Java, and it needs to be able to communicate with the FileMaker Web Publishing Engine. If you have an SSL certificate installed on your web server that is self-signed or issued by an authority not recognized by Java, you need to follow these steps in order to tell Java to trust your SSL certificate.

Step 1: Export the certificate from your web server. Use Firefox to go to the https:// address of your server. From the menu bar, go to Tools->Page Info->Security->View Certificate->Details->Export. Leave the format set to 'X.509 Certificate (PEM)' and save the certificate file somewhere on your hard drive.

Step 2: Import the certificate into your Java key store. For OS X, go into Terminal and then cd into your Java lib/security directory, like this:

cd /Library/Java/Home/lib/security/

Now run the following command to add the certificate to your keystore (replace /path/to/theCertificate.com with the path to the certificate that you exported in step 1, and replace myServerName with some descriptive name of your server):

sudo keytool -importcert -file /path/to/theCertficate.com -trustcacerts -alias myServerName -keystore cacerts

You may be prompted for a keystore password - if you've never changed it, it will be 'changeit' or 'changeme'.

You'll be asked whether to trust the certificate - just put in 'yes' without quotes.

After completing this step, stop and start the Web Publishing Engine and then test it.

Personal tools
Namespaces

Variants
Actions
Plug-in Products
Other Products
Navigation
Toolbox