Noctam/DWP/ACS Test Harness/Existing System/CISSIM/simcertshowto.txt

From The Dreaming
Revision as of 09:18, 7 October 2021 by Stuart (talk | contribs) (Fix ls output merging with navbar (overflow-x:scroll))
(diff) ← Older revision | Latest revision (diff) | Newer revision → (diff)
Jump to navigation Jump to search
ACS Test Harness

Meetings

Existing System

Specifications

Diary
2009:

Notes

Find the appropriate cacerts: 

find / -name cacerts -exec ls -lrt {} \;

-rwxr-xr-x. 1 autosys autosys 59903 Nov 16  2018 /opt/CA/WorkloadAutomationAE/SystemAgent/WA_AGENT/cacerts
-rwxr-xr-x. 1 autosys autosys 113367 Jan  5  2018 /opt/CA/WorkloadAutomationAE/SystemAgent/WA_AGENT/jre/lib/security/cacerts
-rw-r--r--. 1 autosys autosys 113367 Sep 14  2017 /opt/CA/WorkloadAutomationAE/JRE_WA/lib/security/cacerts
-rw-r--r--. 1 svc_patrol_agnt bmc 98626 Nov 30  2017 /opt/bmc/Patrol3/jre64/lib/security/cacerts
-rw-r--r--. 1 svc_patrol_agnt bmc 98626 Nov 30  2017 /opt/bmc/Patrol3/jre/lib/security/cacerts
-rwxr-xr-x. 1 oracle oinstall 80207 Oct 21  2013 /opt/oracle/oracle/product/12.1/client/jdk/jre/lib/security/cacerts
lrwxrwxrwx. 1 root root 41 Oct  3  2018 /usr/lib/jvm/java-1.8.0-openjdk-1.8.0.171-8.b10.el7_5.x86_64/jre/lib/security/cacerts -> ../../../../../../../etc/pki/java/cacerts
-rw-r--r--. 1 root root 117428 Mar  8 23:19 /usr/java/jre1.8.0_144/lib/security/cacerts
-rw-r--r--. 1 root root 117428 Mar  8 23:19 /usr/java/ibm-java-sdk-8.0-5.11-x86_64/jre/lib/security/cacerts
-r--r--r--. 1 root root 211034 Oct  3  2018 /etc/pki/ca-trust/extracted/java/cacerts
lrwxrwxrwx. 1 root root 40 Oct  3  2018 /etc/pki/java/cacerts -> /etc/pki/ca-trust/extracted/java/cacerts

Check if the proxy cert is in cacerts (assuming its alias is cissim): 

keytool -v -list \
  -keystore /usr/java/jre1.8.0_144/lib/security/cacerts \
  | grep cissim -A 10

Add the proxy cert to cacerts: 

keytool -import \
  -trustcacerts \
  -keystore /usr/java/jre1.8.0_144/lib/security/cacerts \
  -storepass changeit \
  -alias cissim \
  -file pdservecert.pem

Add the CIS certs to cacerts: 

keytool -import \
  -trustcacerts \
  -keystore /usr/java/jre1.8.0_144/lib/security/cacerts \
  -storepass changeit \
  -alias dwproot \
  -file DWPRootCA.pem

keytool -import \
  -trustcacerts \
  -keystore /usr/java/jre1.8.0_144/lib/security/cacerts \
  -storepass changeit \
  -alias pinf4 \
  -file PINF4-CA1-MI.pem
Retrieved from "https://wiki.panglossian.net/wiki/index.php?title=Noctam/DWP/ACS_Test_Harness/Existing_System/CISSIM/simcertshowto.txt&oldid=369"