The issued certificate, which can be downloaded using the guide provided នៅទីនេះ, can be installed on Sun Java System Web Server in two ways, similar to ជំនាន់ CSR: via keytool or through the UI (Wizard).
I. Wizard
Log in to your Sun Java System Web Server management and click កិច្ចការទូទៅ ផ្ទាំង។
Select the configuration you are working with (usually your domain name) and click កែសម្រួលការកំណត់រចនាសម្ព័ន្ធ.
ចុចប៊ូតុង វិញ្ញាបនប័ត្រ ផ្ទាំង។
ចុចប៊ូតុង អាជ្ញាធរវិញ្ញាបនប័ត្រ tab and then press ដំឡើង.
ជ្រើសរបស់អ្នក និមិត្តសញ្ញា (internal if the key is generated using ការណែនាំនេះ).
Open .ca-bundle file with Notepad or TextEdit and paste it into the corresponding box:
មាស:
ជ្រើសប៊ូតុង Certificate File radio button and browse to .p7b file that contains the certificate for your domain and CA bundle.
Now the bundle and certificate are installed.
If the certificate and bundle were sent in .crt and .ca-bundle correspondingly, then the .ca-bundle can be installed following steps 1-6 . The certificate itself can be installed this way:
ធ្វើជំហានទី ១-៤ ម្តងទៀត។
ជ្រើសប៊ូតុង Server Certificates > ចុច។ ដំឡើង.
Enter an Alias for the certificate to help you identify it in the future and select the listener.
Complete the wizard by pressing បញ្ចប់.
The certificate is now installed.
To configure the certificate for use, go to Configuration > Edit HTTP Listener.
នៅក្រោម ទូទៅ, check the box to បើកដំណើរការ SSL and select the certificate you just installed. Now the certificate is bound to the listener and HTTP traffic will be encrypted.
After that, you can check the installation នៅទីនេះ or នៅទីនេះ.
II. Keytool
- Upload the certificate files to your server.
- រត់ពាក្យបញ្ជាដូចខាងក្រោម:
PEM:
keytool -import -trustcacerts -alias root -file RootCertificate.crt -keystore .jks
keytool -import -trustcacerts -alias intermediate -file intermediateCertificate.crt -keystore .jks
keytool -import -trustcacerts -alias -file .crt -keystore .jks
Note: import COMODORSAAddTrustCA.crt and COMODORSADomainValidationSecureServerCA.crt with different aliases.
For example, importing a PositiveSSL with a full bundle will look like this:
keytool -import -trustcacerts -alias root -file AddTrustExternalCARoot.crt -keystore yourkeystore.jks
keytool -import -trustcacerts -alias intermediate1 -file COMODORSAAddTrustCA.crt -keystore yourkeystore.jks
keytool -import -trustcacerts -alias intermediate2 -file COMODORSADomainValidationSecureServerCA.crt -keystore yourkeystore.jks
keytool -import -trustcacerts -alias -file .crt -keystore yourkeystore.jks
PKCS #7:
If the certificate is received in a PKCS#7 format – .cer or .p7b – it can be imported in the following way:
keytool -import -trustcacerts -alias -file .p7b -keystore yourkeystore.jks - Correct your server.xml with the following lines:
SSLEnabled=”true”
scheme=”https” secure=”true” clientAuth=”false”
sslProtocol=”TLS” keystoreFile=”path/to/.jks”
keystorePass=”” > - Restart Sun Java Web Service.
The certificate is successfully installed on the server. You can check it នៅទីនេះ or នៅទីនេះ.