-
Navigate to
[Adobe_JAVA_HOME]/
bin and type
the following command to create the keystore:
keytool -genkey -dname
"CN=
Host Name
,
OU=
Group Name
,
O=
Company Name
,
L=
City Name
,
S=
State
,
C=
Country Code
"
-
alias
"LC Cert"
–
keyalg rsa -keypass
key_password
-keystore
keystorename.
keystore
Replace
[Adobe_JAVA_HOME]
with
the name of the directory where the JDK is installed, and replace
the text in bold with values that correspond to your environment.
The Host Name is the fully qualified domain name of the application
server.
-
Enter the
keystore_password
when prompted for a password.
Note:
The
keystore_password
entered at this step
may be the same password
(key_password) that you entered in step 1, or may be different.
-
Copy the
keystorename.
keystore file to the
[JBoss root]
\standalone\configuration
directory by typing the following command:
copy keystorename.keystore [JBoss root]/standalone/configuration
-
Export the certificate file by typing the following command:
keytool -export -alias "LC Cert" -file LC_cert.cer -keystore [JBoss root]\standalone\configuration\keystorename.keystore
-
Enter the
keystore_password
when prompted for a password.
-
Copy the LC_cert.cer file to the
[JBoss root] configuration directory
by
typing the following command:
copy LC_cert.cer [JBoss root]\standalone\configuration
-
View the contents of the certificate by typing the following
command:
keytool -printcert -v -file
[JBoss root]\standalone\configuration\LC_cert.cer
-
If necessary, provide write access to the
cacerts
file
in
[Adobe_JAVA_HOME]\jre\lib\security.
Right-click the
cacerts
file,
select Properties, and then deselect the Read-only attribute.
-
Import the certificate by typing the following command:
keytool -import -alias "LC Cert" -file LC_cert.cer -keystore [Adobe_JAVA_HOME]\jre\lib\security\cacerts
-
Type
changeit
as the password.
changeit
is
the default password for a Java installation.
-
When prompted if you
Trust this certificate? [no]:,
type
yes
. The
confirmation "Certificate was added to keystore” is displayed.
-
In a text editor, open the file
(Jboss 6.2 Only)
[JBoss root]\standalone\configuration\lc_turnkey.xml.
-
Uncomment the following lines in the
lc_turnkey.xml
file:
<!-- SSL/TLS Connector configuration using the admin devl guide keystore <Connector port="8443" address="${jboss.bind.address}" maxThreads="100" strategy="ms" maxHttpHeaderSize="8192" emptySessionPath="true" scheme="https" secure="true" clientAuth="false" keystoreFile="${jboss.server.home.dir}/conf/keystoreFile.keystore" keystorePass="keystorePass" sslProtocol = "TLS" />
-->
-
For the
keystoreFile
attribute in
lc_turnkey.xml
,
specify the path of the keystore file you created. Specify
keystore_password
for
the
keystorePass
attribute in
server.xml
.
-
Save the
lc_turnkey.xml
file.
-
Restart the application server:
-
From the
Windows Control Panel
,
click
Administrative Tools
, and then click
Services
.
-
Select
JBoss for Adobe Experience Manager forms.
-
Select
Action > Stop.
-
Wait for the status of the service to appear as stopped.
-
Select
Action > Start.