cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 

Dynatrace 6.5 Server Web port 9911 "Not Secure", I have SSL certificate keystore.jks, what is the configuration?

trung_dang
Newcomer

When I try to access URL https://rn2-sapdynad-lapp01.rno.apple.com:9911/ind... it shows "Not Secure". It is because of the SSL certificate. I have some files key.pem, cert.pem, keystore.jks, keystore.p12, rn2-sapdynad-lapp01.crt.

What would be the configuration to make the URL secure?

Thanks.


3 REPLIES 3

trung_dang
Newcomer

Yesterday, I went through this document https://www.dynatrace.com/support/help/installation/monitoring-setup/how-do-i-add-certificate-to-server-trust-store/ but it is still not secure

Today, I went through this document https://community.dynatrace.com/community/display/DOCDT65/Deploy+Certificate?_ga=2.220751128.1261595031.1532478023-1722706522.1527719222 with import my own certificate but it is still not secure.

then I go to this URL https://rn2-sapdynad-lapp01.rno.apple.com:8021/ and select "Dynatrace Web", it redirects me back to https://rn2-sapdynad-lapp01.rno.apple.com:9911/ and suddenly it shows secure. Now it is secured. Can someone explain?


Hi Trung,

the first link there is actually for the Dynatrace SaaS/Managed platform, not actually AppMon.

The certificates used are deployed through certificate management:

https://community.dynatrace.com/community/display/DOCDT65/Certificate+Management

Advanced keystore operations and debug logging instructions are here:

https://community.dynatrace.com/community/display/DOCDT65/Advanced+Features+-+Certificates%2C+Private+Keys+and+Keystore

There is also the option to specify a custom keystore for the webUI only, so that in effect you have separation of concerns of certificates used for internal AppMon component communication vs. webUI communication. This is specified in the INI file which keystore to use.

Just if you are using a customer-provided keystore for the web, be sure to check out the migration and upgrade guide if the server is upgraded in the future for what requirements there may be:

https://www.dynatrace.com/support/doc/appmon/installation/upgrade-and-migration-guide/

Regards,

Andrew


Regards,
Andrew M.

JamesKitson
Dynatrace Leader
Dynatrace Leader

What is the exact message as to why it is not secure and where did you get the certificate from?

James