14 Apr 2018 08:34 AM - last edited on 09 Dec 2021 10:11 AM by MaciejNeumann
Hi Team , We would like to use internal ssl certificate instead of ssl certificate provided by dynatrace . Can you please share details steps on How to generate CSR from Managed Cluster Server . Do we need to generate 3 CSR if it is 3 Node cluster
Solved! Go to Solution.
14 Apr 2018 01:34 PM - last edited on 16 Oct 2023 04:05 PM by random_user
Hello Prashant,
Use the OpenSSL toolkit to generate CSR and provide it to the CA you have selected in order to request a valid certificate.
Have a look for the similar post.
https://community.dynatrace.com/spaces/482/dynatrace...
Regards,
Babar
18 Apr 2018 12:30 PM
Hi Babar thanks for your reply. I did saw the URL shared by you but it did not highlighted process to generate CSR. it does show how to import the certificate
18 Apr 2018 01:22 PM
Hello Prashant,
I mentioned to use the OpenSSL toolkit to generate the CSR in my first answer.
Regards,
Babar
18 Apr 2018 01:24 PM
Thanks what about keytool which is available in Linux
18 Apr 2018 01:51 PM
That can work as well, here's a page I usually use as reference for keytool commands: https://www.sslshopper.com/article-most-common-java-keytool-keystore-commands.html
18 Apr 2018 01:59 PM
Hi James Do we need to use specific alias name & trust store /Keystore password while generating this request .Or it can be anything ?
18 Apr 2018 08:11 PM
I'm not an expert in this area so my answer wouldn't be authoritative but in my experience it doesn't really matter so long as you know what they are. I think the keystore name is generally based off of the host name.
19 Apr 2018 07:21 AM
Hello @Prashant S.
As per my understanding you will have to create a customized keystore.jks which contains a new private key accompanied by the certificate chain (with alias dtserver
) and has it's password defined.
Below link is for the AppMon but it should be apply on the Dynatrace.
https://www.dynatrace.com/support/doc/appmon/installation/set-up-communication-connections/certificate-management/advanced-features-certificates-private-keys-and-keystore/
Regards,
Babar