Administration → Secure Socket Layer (SSL) Configuration → Configuring Mutual Authentication Mode → Mutual Authentication: Server, Agent Relay, and Agents
These instructions are for configuring mutual authentication for a server, agent relays, and agents that communicate with the server through agent relays. Make sure your server and agents are not running before you start this configuration.
To configure mutual authentication between a server, agent relay, and agents:
.serena\ra\conf
keytool -export -keystore server.keystore -storepass changeit -alias server -file server.crt
You should see the message:
Certificate stored in file server.crt
where [agent-relay_name] is the unique name you gave the agent relay during install.
[install_location]\[agent-relay_name]\conf\jms-relay
import the server.crt file by running:
keytool -import -keystore agentrelay.keystore -storepass changeit -alias server -file server.crt -keypass changeit -noprompt
You should see the message:
Certificate was added to keystore
[install_location]\[agent-relay_name]\conf\jms-relay
export the agent relay key as a certificate by running:
keytool -export -keystore agentrelay.keystore -storepass changeit -alias [agent-relay_alias] -file [agent-relay_name].crt
You should see the message:
Certificate is stored in file [agent-relay_name].crt
keytool -import -keystore server.keystore -storepass changeit -alias [agent-relay_alias] -file [agent-relay_name].crt -keypass changeit -noprompt
You should see the message:
Certificate was added to keystore
where [agent_name] is the unique name you gave the agent during install.
keytool -import -keystore sra.keystore -storepass changeit -alias [agent-relay_alias] -file [agent-relay].crt -keypass changeit -noprompt
You should see the message:
Certificate was added to keystore
keytool -export -keystore sra.keystore -storepass changeit -alias [agent_alias] -file [agent_name].crt
You should see the message:
Certificate is stored in file [agent_name].crt
keytool -import -keystore agentrelay.keystore -storepass changeit -alias [agent_alias] -file [agent_name].crt -keypass changeit -noprompt
You should see the message:
Certificate was added to keystore
Copyright © 2011–2016 Serena Software, Inc. All rights reserved.