Worklight适配器相互SSL [英] Worklight Adapter Mutual SSL
问题描述
将Worklight与后端系统集成的后续步骤。在5.0.6适配器应支持相互SSL。
Followed steps to integrate Worklight with backend system. In 5.0.6 adapters should support mutual SSL.
- 将cert导入default.keystore,名称为cert1
- 修改的适配器的sslCertificateAlias为cert1
当使用Worklight Studio运行部署的适配器与服务器连接时,它会抱怨无法找到有别名为cert1的证书链。
When using Worklight Studio to run deployed adapter connecting with server, it is complaining about "Unable to find certificate chain with alias: 'cert1'".
有什么步骤缺失?
推荐答案
检查 worklight.properties 文件中的 ssl.keystore。 *属性,然后检查密钥库文件中是否存在cert keytool:
Check "ssl.keystore.*" properties in "worklight.properties" file, after it check if the cert exists in the keystore file using keytool:
keytool -list -keystore default.keystore
以下是使用自签名证书在适配器和后端服务器之间配置相互SSL的步骤:
Here is are steps to configure mutual SSL between adapter and backend server with self signed certificates:
- 在 default.keystore 中生成适配器的私钥并导出其公共证书
- 将适配器的证书导入后端truestore文件
- generate adapter's private key in "default.keystore" and export its public certificate
- import adapter's certificate into backend truestore file
(如果后端没有CA签署的凭证)
in case backend hasn't CA signed certificate:
- 产生后端私钥在其密钥库文件中并导出公用证书
- 将后端的公用证书导入WL服务器上的default.keystore文件
这篇关于Worklight适配器相互SSL的文章就介绍到这了,希望我们推荐的答案对大家有所帮助,也希望大家多多支持IT屋!