Andrew Nguyen

Verify CA Identity Manager SSL Connection in Linux

Blog Post created by Andrew Nguyen Employee on Aug 24, 2016

Verify which version of Java is being used:

java -version

 

If java version is not correct, update .bash_profile with following lines:

JAVA_HOME=<LOCATION_OF_JAVA>

 

export JAVA_HOME

 

add JAVA_HOME to PATH

 

Example: PATH=<OLD_VALUE_OF_PATH>:<JAVA_HOME>/bin

 

export PATH

 

Install java and javac onto machine:

sudo update-alternatives --install /usr/bin/java java <JAVA_HOME>/bin/java 100
sudo update-alternatives --install /usr/bin/javac javac <JAVA_HOME>/javac 100

Update java to desired version:

sudo update-alternatives --config java

sudo update-alternatives --config javac

 

Navigate to the following directory:

<CA_Directory_HOME>\dxserver\config\ssld\personalities

Locate certificate file: corporateuserstore.pem

 

Stop application server

 

Run the command

keytool -keystore "<JAVA_HOME>\jre\lib\security\cacerts" -import -file "<LOCATION_OF_PEM_FILE>\corporateuserstore.pem" -trustcacerts -alias CADIRTrusted

 

Start application server

 

Using incorrect version of Java:

Update standalone.sh file

 

Look for lines: "# ----------------------- start CA IAM FW changes -----------------------"

 

Then update JAVA_HOME value with desired JAVA_HOME

Outcomes