How does this procedure work in case of an existing letsencrypt certificate?
Because I have an existing certificate, can I skip steps 3? I continued directly with step 4, uploading and conveting cert.pem to cert.der. But importe step 5 throws out an error: keytool error: java.lang.Exception: Public keys in reply and keystore don't match: 1. Run: "keytool -genkey -keyalg RSA -alias ssl -keystore [keystore name]" 2. Run: "keytool -certreq -alias ssl -keyalg RSA -file certreq.csr -keystore [keystore name]" 3. Submit the CSR to a signing authority (Thawte, Verisign, etc) 4. Download your certificate from the signing authority. Please remember to download the Certificate in PKCS#7 format. If you get a certificate in pem format don't convert to PKCS#7/P7B Format but der format 5. Import the Certificate into the keystore by running: "keytool -import -alias ssl -trustcacerts -file mysignedcert.cer -keystore [keystore name]" Thanks, Wolfgang On Mon, 2019-02-18 at 11:35 +0100, Michael Brohl wrote: > You will have to import your certificate to the Java keystore and > configure Tomcat to use it [1,2]. > > The standard way would be to run OFBiz behind an Apache webserver > with > the virtual hosts configured to use the certificate. > > Regards, > > Michael Brohl > ecomify GmbH > www.ecomify.de > > [1] https://tomcat.apache.org/tomcat-8.5-doc/ssl-howto.html > > [2] > https://cwiki.apache.org/confluence/display/OFBiz/Apache+OFBiz+Technical+Production+Setup+Guide#ApacheOFBizTechnicalProductionSetupGuide-SSLCertificateSetup > > > Am 18.02.19 um 10:53 schrieb wp.rauchh...@gmail.com: > > Would you please point me to a procedure how to setup ofbiz to use > > my letsencrypt certificates? > > I don't seem to be able to find one. > > > > Is it possible to ruj Ofbiz under Apache webser? > > > > > > Thank you, Wolfgang > > > > > > > >