Proxy Zertifikat ermitteln

Aus GTDS
Zur Navigation springen Zur Suche springen

Insperiert von:
https://support.sonatype.com/hc/en-us/articles/213464948-How-to-trust-the-SSL-certificate-issued-by-the-HTTP-proxy-server-in-Nexus
und
https://support.sumologic.com/hc/en-us/articles/360000744108-SSLHandshakeException-PKIX-path-building-failed-unable-to-find-valid-certification-path-to-requested-target 

keytool -J-Dhttps.proxyHost=<proxy_hostname> -J-Dhttps.proxyPort=<proxy_port> -printcert -rfc -sslserver <remote_host_name:remote_ssl_port>

You should see at least two entries printed by the above command. Take the last certificate content printed and copy it entirely to your clipboard. This should be your proxy server's certificate, added to the end of the certificate chain.

The copied certificate content should start with -----BEGIN CERTIFICATE----- and end with-----END CERTIFICATE-----

Navigate to ../jre/bin and run the below command 

..\..\bin/keytool.exe -keystore cacerts -importcert -alias proxy -file <path_to_file\proxy.cer..>

Enter keystore password:

5.) Type the password for the keystore at the “Password” prompt and press Enter. The default Java password for the cacerts file is “changeit”.

6.) Type ‘y’ at the “Trust this certificate?” prompt and press Enter.

Abgerufen von „http://imigtds.med.uni-giessen.de/w/index.php?title=Proxy_Zertifikat_ermitteln&oldid=48