...
- We received cert files from the customer's IT that included all machines used by ArcGIS server. (There may be more than one if load balancing is used. It usually has a .crt suffix.)
From the command line on the machine with the TomCat server, enter a command similar to this one to
provide the server with the certificatesimport a signed primary certificate from the Roads and Highways interface to an existing Java keystore:
-alias rahq_cert -keystore "D:\Program Files\Java\jre7\lib\security\cacerts" -trustcacerts -file "C:\Users\l012883\Desktop\rahq.crt"Code Block keytool -import
-trustcacerts -alias mydomain -file mydomain.crt -keystore keystore.jks
Import New CA into Trusted Certs
Code Block keytool -import -trustcacerts -file /path/to/ca/ca.pem -alias CA_ALIAS -keystore $JAVA_HOME/jre/lib/security/cacerts
When asked for a password, enter it.
- When asked if you accept the new cert, type “Y”.
- Restart the TomCat service service.
OR ArcGIS server may have been set to https-only and needs to be reset (if http is the intended configuration):
...