Versions Compared

Old Version 2

changes.mady.by.user AgileAdmin

Saved on

compared with

New Version Current

changes.mady.by.user AgileAdmin

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.
Comment: Published by Scroll Versions from space PD and version Rudy

...

  1. We received cert files from the customer's IT that included all machines used by ArcGIS server. (There may be more than one if load balancing is used.   It usually has a .crt suffix.)

  2. From the command line on the machine with the TomCat server, enter a command similar to this one to

    provide the server with the certificates

    import a signed primary certificate from the Roads and Highways interface to an existing Java keystore:

    Code Block
    keytool -import
    -alias rahq_cert -keystore "D:\Program Files\Java\jre7\lib\security\cacerts" -trustcacerts -file "C:\Users\l012883\Desktop\rahq.crt"
     -trustcacerts -alias mydomain -file mydomain.crt -keystore keystore.jks

  3. Import New CA into Trusted Certs

    Code Block
    keytool -import -trustcacerts -file /path/to/ca/ca.pem -alias CA_ALIAS -keystore $JAVA_HOME/jre/lib/security/cacerts

  4. When asked for a password, enter it.

  5. When asked if you accept the new cert, type “Y”.
  6. Restart the TomCat service service.

OR ArcGIS server may have been set to https-only and needs to be reset (if http is the intended configuration):

...