Tag: cert

Install Apache Tomcat 9 Complete with Updated Scripts

In this exercise, Tomcat 9 will be installed with OpenJDK 8 using a self-signed certificate using the http2.Http2Protocol protocol.  I’ve updated and simplified the script since my last attempt at a similar Tomcat 9 installation.  I have also added SELinux context, log rotation, and speed! ######################################################################################## # Apache Tomcat 9 ######################################################################################## yum install wget firewalld java-1.8.0-openjdk-devel policycoreutils-python epel-release -y yum…

Read More »

Apache Tomcat 9 – SSL/TLS Configuration HOW-TO

In this exercise, Tomcat 9 will be installed with OpenJDK 8 using a self-signed certificate in a PKS12 keystore on a clean CentOS 7 Linux server using the Http11NioProtocol protocol.  These are the steps. ######################################################################################## # Apache Tomcat 9 ######################################################################################## yum install wget vim net-tools firewalld unzip -y yum install java-1.8.0-openjdk-devel -y cd /opt/app wget http://us.mirrors.quenda.co/apache/tomcat/tomcat-9/v9.0.16/bin/apache-tomcat-9.0.16.tar.gz tar xzvf apache-tomcat-9.0.16.tar.gz ln…

Read More »

Apply an SSL to MySQL

There is a MySQL 5.6.x install that works wonderfully.  However, a cert was purchased and applied to everything else, so why not apply to the MySQL install too. I ran into a pitfall or two while attempting this, so I am going to write this up in the effort to avoid those pitfalls. The Key file Determine the version of…

Read More »

Add Root Certificates to a CentOS Linux Server

Adding a root authority certificate to a server that does not already have the cert may be added to the server manually. CentOS 6 Install the ca-certificates package: yum install ca-certificates Enable the dynamic CA configuration feature: update-ca-trust force-enable Add it as a new file to /etc/pki/ca-trust/source/anchors/: cp foo.crt /etc/pki/ca-trust/source/anchors/ Use command: update-ca-trust extract CentOS 7 CentOS 7.0 and later…

Read More »