I installed websphere 6.1 and chose the default "enable administrative security". Once I finished my installation, I noticed I could not login under https://localhost:9043/admin/console. I got a message about a certificate not being trusted.
First I discovered, that I had renamed my machine, but that /etc/hosts still had old entries for 127.0.0.1. Because of that, my node and cell names were still deduced from the old machine name.
I fixed that and reinstalled.
At login I got the failure: invalid security certificate.
My browser did not trust the self signed certificate that the websphere server uses.
I did following to fix that:
Small remark: the self signed certificate websphere generated is valid for a year. The certificate itself probably too.
First I discovered, that I had renamed my machine, but that /etc/hosts still had old entries for 127.0.0.1. Because of that, my node and cell names were still deduced from the old machine name.
I fixed that and reinstalled.
At login I got the failure: invalid security certificate.
My browser did not trust the self signed certificate that the websphere server uses.
I did following to fix that:
- In
/bin, started keyman: sudo ./ikeyman.sh - Opened jks file under profiles/AppSrv01/etc/DummyClientTrustFile.jks, password is WebAS.
- there I looked up the default_signer, and selected the extract option. I exported cert.arm as base64 ascii.
- under firefox, preferences, advanced, view certificates I imported the CA certificate
- I restarted firefox.
Small remark: the self signed certificate websphere generated is valid for a year. The certificate itself probably too.
Comments