By default, tpm can automatically create suitable certificates and configuration for use in your deployment. To create the required certificates by hand, use the following steps:
Generating a JGroups Certificate
Run this command to create the keystore in
/etc/tungsten/secure
. You may use your own location, but
the values for -storepass
and
-keypass
must match.
shell> keytool -genseckey -alias jgroups \
-validity 365 \
-keyalg Blowfish -keysize 56 -keystore /etc/tungsten/secure/jgroups.jceks \
-storepass mykeystorepass -keypass mykeystorepass \
-storetype JCEKS
Generating a TLS Certificate
Run this command to create the keystore in
/etc/tungsten/secure
. You may use your own location, but
the values for -storepass
and
-keypass
must match.
shell> keytool -genkey -alias tls \
-validity 365 \
-keyalg RSA -keystore /etc/tungsten/secure/tls.jks \
-dname "cn=Continuent, ou=IT, o=Continuent, c=US" \
-storepass mykeystorepass -keypass mykeystorepass