FAQ
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 

How to Generate CSR in Dynatrace Managed server for SSL certificate request

Go to solution
pshinde
Inactive

‎14 Apr 2018 12:34 AM - last edited on ‎09 Dec 2021 02:11 AM by Community Team

Hi Team , We would like to use internal ssl certificate instead of ssl certificate provided by dynatrace . Can you please share details steps on How to generate CSR from Managed Cluster Server . Do we need to generate 3 CSR if it is 3 Node cluster

Labels:
0 Kudos
Reply
8 REPLIES 8

Go to solution
Babar_Qayyum
DynaMight Guru
DynaMight Guru

‎14 Apr 2018 05:34 AM

Hello Prashant,

Use the OpenSSL toolkit to generate CSR and provide it to the CA you have selected in order to request a valid certificate.

Have a look for the similar post.

https://answers.dynatrace.com/spaces/482/dynatrace...

Regards,

Babar

0 Kudos
Reply

Go to solution
pshinde
Inactive
In response to Babar_Qayyum

‎18 Apr 2018 04:30 AM

Hi Babar thanks for your reply. I did saw the URL shared by you but it did not highlighted process to generate CSR. it does show how to import the certificate

0 Kudos
Reply

Go to solution
Babar_Qayyum
DynaMight Guru
DynaMight Guru
In response to pshinde

‎18 Apr 2018 05:22 AM

Hello Prashant,

I mentioned to use the OpenSSL toolkit to generate the CSR in my first answer.

Regards,

Babar

0 Kudos
Reply

Go to solution
pshinde
Inactive

‎18 Apr 2018 05:24 AM

Thanks what about keytool which is available in Linux

0 Kudos
Reply

Go to solution
JamesKitson
Dynatrace Guru
Dynatrace Guru
In response to pshinde

‎18 Apr 2018 05:51 AM

That can work as well, here's a page I usually use as reference for keytool commands: https://www.sslshopper.com/article-most-common-java-keytool-keystore-commands.html

0 Kudos
Reply

Go to solution
pshinde
Inactive

‎18 Apr 2018 05:59 AM

Hi James Do we need to use specific alias name & trust store /Keystore password while generating this request .Or it can be anything ?

0 Kudos
Reply

Go to solution
JamesKitson
Dynatrace Guru
Dynatrace Guru
In response to pshinde

‎18 Apr 2018 12:11 PM

I'm not an expert in this area so my answer wouldn't be authoritative but in my experience it doesn't really matter so long as you know what they are. I think the keystore name is generally based off of the host name.

0 Kudos
Reply

Go to solution
Babar_Qayyum
DynaMight Guru
DynaMight Guru
In response to pshinde

‎18 Apr 2018 11:21 PM

Hello @Prashant S.

As per my understanding you will have to create a customized keystore.jks which contains a new private key accompanied by the certificate chain (with alias dtserver) and has it's password defined.

Below link is for the AppMon but it should be apply on the Dynatrace.

https://www.dynatrace.com/support/doc/appmon/installation/set-up-communication-connections/certificate-management/advanced-features-certificates-private-keys-and-keystore/

Regards,

Babar

0 Kudos
Reply
Ask a question