In file explorer, go back to C:\Program Files\Deepnet DualShield\certs. You will need to change all of them in the same way. DualShield uses 5 ports from 8072 to 8076, therefore there are 5 occurrences of the certificate settings in the server.xml. If not you will need to update all occurrences of keystorePass within the server.xml file.
Make sure the password specified matches the one for the newly created pfx file. but the main feature we are looking for is keystorePass. You will most likely have other lines in there such as as Cypher information. Open the server.xmlfile, which is located in the folder: C:\Program Files\Deepnet DualShield\tomcat\conf\ You need to copy the newly created PFX file to this folder. The certificate DualShield uses, is stored as a file called allinone.pfx in the default location of C:\Program Files\Deepnet DualShield\certs (or follow the path of where you installed DualShield Authentication Server) You can check the version you have by opening a command prompt and typing the following commands. This may have already been shipped with DualShield. When launching Keystore Explore for the first time, you may be asked to install Java 1.8. To renew the Self-Signed Server Certificate you will need to download a third-party tool called Keystore Explorer. This article is for the handful of customers where we may need to renew the certificate with a new expiry date. Unfortunately, we have a small number of customers who are using self-signed certificates in a production environment.
Recent versions of DualShield only create Self-Signed certs with a one-year expiry This option gives the opportunity for IT administrators to trial our product to see if they like it before they purchase a commercial certificate.īy default the Self-Signed CA and Server certificates had a validity period of 100 years, however, because of new security and compliance, some web browsers eg a recent update of Chrome or MFA applications such as VPN or authenticators such as Apple Push will not accept certificates with an expiry date so far in advance. During the installation of the DualShield Authentication Server, the customer gets the option of getting a self-signed certificate created for them during setup.
0 kommentar(er)
