aboutsummaryrefslogtreecommitdiffstats
path: root/a1-policy-management/config/README
diff options
context:
space:
mode:
authorPatrikBuhr <patrik.buhr@est.tech>2022-08-11 09:03:24 +0200
committerPatrikBuhr <patrik.buhr@est.tech>2022-08-12 13:09:29 +0200
commitca315932268e1c5da6a12201db4cfaef35df69bb (patch)
tree50667dad55d54f7b8e9957f7597dc64f5fc5d1ce /a1-policy-management/config/README
parentff5190fa7b40386658eb20ebba5b4d885cd98ba3 (diff)
NONRTRIC PMS, updated certs
Updated certificate (which was expired). Issue-ID: CCSDK-3683 Signed-off-by: PatrikBuhr <patrik.buhr@est.tech> Change-Id: I373bf34bc0a1bb0b5b5ff00f0f98da080ba794ff
Diffstat (limited to 'a1-policy-management/config/README')
-rw-r--r--a1-policy-management/config/README6
1 files changed, 4 insertions, 2 deletions
diff --git a/a1-policy-management/config/README b/a1-policy-management/config/README
index b54a6751..42e0b7bd 100644
--- a/a1-policy-management/config/README
+++ b/a1-policy-management/config/README
@@ -3,13 +3,15 @@ The keystore.jks and truststore.jks files are created by using the following com
1) Create a CA certificate and a private key:
openssl genrsa -des3 -out CA-key.pem 2048
-openssl req -new -key CA-key.pem -x509 -days 1000 -out CA-cert.pem
+openssl req -new -key CA-key.pem -x509 -days 3600 -out CA-cert.pem
2) Create a keystore with a private key entry that is signed by the CA:
+Note: the "your name" must be "localhost" for the unittest to work.
+
keytool -genkeypair -alias policy_agent -keyalg RSA -keysize 2048 -keystore keystore.jks -validity 3650 -storepass policy_agent
keytool -certreq -alias policy_agent -file request.csr -keystore keystore.jks -ext san=dns:your.domain.com -storepass policy_agent
-openssl x509 -req -days 365 -in request.csr -CA CA-cert.pem -CAkey CA-key.pem -CAcreateserial -out ca_signed-cert.pem
+openssl x509 -req -days 3650 -in request.csr -CA CA-cert.pem -CAkey CA-key.pem -CAcreateserial -out ca_signed-cert.pem
keytool -importcert -alias ca_cert -file CA-cert.pem -keystore keystore.jks -trustcacerts -storepass policy_agent
keytool -importcert -alias policy_agent -file ca_signed-cert.pem -keystore keystore.jks -trustcacerts -storepass policy_agent