USS with SSL(8443). No SSL-contact to Catalog

book

Article ID: 35737

calendar_today

Updated On:

Products

CA Service Catalog CA Service Management - Asset Portfolio Management CA Service Management - Service Desk Manager

Issue/Introduction

After implementing SSL, unable to communicate to service catalog.

 

Resolution:

It is necessary to add certify into cacert store of Liferay JRE 

https://urldefense.proofpoint.com/v2/url?u=http-3A__stackoverflow.com_questions_9619030_resolving-2Djavax-2Dnet-2Dssl-2Dsslhandsh&d=CwICAg&c=_hRq4mqlUmqpqlyQ5hkoDXIVh6I6pxfkkNxQuL0p-Z0&r=gBaQovDdAGl3Oncz3SXlQ-I7tetiRs3_p1ALEkCMIHY&m=OVfOq-YIF31sI3fTxzIB4GHDhn7HHfLGQhXUphXtDCE&s=jvg963-zxLFK3iuCydfhU4UPITRfmCh2eUVj6O9PKzY&e=akeexception-sun-security-validator-validatore 

 

You need to add the certificate for App2(Service Catalog) to the keystore file of the used JVM located at %JAVA_HOME%\lib\security\cacerts.

 

First you can check if your certificate is already in the keystore by running the following command: 

keytool -list -keystore "%JAVA_HOME%/jre/lib/security/cacerts" 

(you don't need to provide a password) 

 

If your certificate is missing you can get it by downloading it with your browser and add it to the keystore with the following command: 

keytool -import -noprompt -trustcacerts -alias <AliasName> -file <certificate> -keystore <KeystoreFile> -storepass <Password>

 

After the 'import' you can run the first command again to check if your certificate was added.

 

Then after the SSL-login to the USS, you can access the SSL-Catalog too.

Environment

Release: CASVCT99000-14.1-Service Catalog
Component: