SGES v2.1.1 server certificate expired

The CA server certificate bundled with Sun GlassFish Enterprise Server v2.1.1 has expired since Jan 8, 2010.

Hence you would see SEVERE messages when you restart your domains. While this is being fixed in later SGES patches, you have a workaround to avoid these messages.

All you need to do is to remove the expired certificate from the keystore.

To remove from JKS keystore, use the following command
keytool -delete -alias verisignserverca -keystore <DOMAIN_ROOT>/config/cacerts.jks

To remove from NSS keystore, use the following command,
certutil -D -n verisignserverca -d <DOMAIN_ROOT>/config

Comments:

Hello Kalpana,
Do you have a method for doing this in the windows version of Netbeans?

Thanks

Paul

Posted by Paul McGurk on June 19, 2010 at 02:42 AM PDT #

Hello Kalpana,
I've located the keytool and entered the command line as described in your article, I'm now being asked for a password for which I have not got a clue. Do you have any suggestions?

Thanks

Paul

Posted by Paul McGurk on June 20, 2010 at 06:37 AM PDT #

Paul,
Did you try "changeit" ?.

Posted by Kalpana Karunamurthi on August 30, 2010 at 05:12 PM PDT #

Post a Comment:
  • HTML Syntax: NOT allowed
About

Kalpana Karunamurthi

Search

Categories
Archives
« April 2014
SunMonTueWedThuFriSat
  
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
   
       
Today