AnsweredAssumed Answered

How to get VSE to recognize external trusted SSL cert

Question asked by Rob-BBT on Aug 10, 2018
Latest reply on Sep 5, 2018 by deoma03

Pardon me if this has been asked before, but here is the situation:

 

We have our own SSL signing authority and created an SSL cert for LISA.  

How can I import this cert so it works in both Workstation and when deployed to the VSE?

 

If I put the cert (lisa.pfx) in the C:\Program Files\CA\DevTest folder and specify C:\Program Files\CA\DevTest\lisa.pfx as the ssl path in the Listener step, I can verify it.  However when deployed to the VSE, it throws errors saying it can't find the keystore at C:\Program Files\CA\DevTest\lisa.pfx.

 

Alternatively, on the server, we have a property 

lisa.net.keyStore=/ca/DevTest/lisa.pfx and

lisa.net.keyStore.password_enc=l2ac5b2e8cb9d8310938621a97da2b1274bb10d79838e71123f47d3b1af5e689f3978ab1a49e01208973fdf9206ae

 

If I specify {{lisa.net.keyStore}} in Workstation, it fails to verify (which I kind of expect).  But deploying to the VSE also throws an error that it can't find the keystore.

 

Our dev teams need to import the cert into their application to ensure a trusted handshake and right now they can import the cert but when they connect to LISA they are getting the default self signed cert so it's not making the handshake and I need to get the VSE to respond with the cert in lisa.pfx.

 

How do I make that happen?

Outcomes