Creating .keystore and .csr for generating new SSL certificate
Import third party SSL Certificate in ManageEngine Analytics Plus
In order to implement SSL, a web server must have an associated certificate for each external interface (IP address) that accepts secure connections.
Procedure for creating a csr - Using Subject Alternative Names:
Following commands are to be executed from the command prompt in the directory <ME_Analytics_Plus_Home>\jre\bin>
1. Creation of keystore file
keytool -genkey -alias <your alias> -keyalg RSA -keysize 2048 -sigalg SHA256withRSA -keystore server.keystore
(for Multi-Domain (SAN) Certificates use: keytool -genkey -alias <your alias> -keyalg RSA -keysize 2048 -sigalg SHA256withRSA -keystore server.keystore -ext san=dns:<your alias>)
If you use your own password then, you need to update the password in the following file <AnalyticsPlus home>/conf/server.xml
Example of command execution, generating keystore file:
CN =mydomain (eg: bi.analytics.com)
Enter your exact host and domain name that you wish to secure. Say, If you wish to secure
http://www.mydomain.com/, then you will need to enter the exact host (www)and domain name (mydomain.com) in this field}.
If you enter mydomain.com then the certificate issued to you will only work error free on
https://mydomain.com/
OU(Organization Unit)=MSP, O(Organization) = My organization, L(Location) = Los Angles, S(State) = CA, C(Country) = US.
Again it will ask for a password give the same password you gave previously <keystore password>
2. Creation of CSR file
keytool -certreq -alias <your alias> -sigalg SHA256withRSA -file server.csr -keystore server.keystore
(for Multi-Domain (SAN) Certificates: keytool -certreq -alias <your alias> -sigalg SHA256withRSA -file server.csr -keystore server.keystore -ext san=dns:<your alias>)
Reference: Video available in the attachment
Note: after creating the .csr file, use it to generate the SSL cert
New to ADSelfService Plus?
Related Articles
Applying an SSL Certificate (.cer\.crt format)
Please Note: These are general guidelines, It is always advised to refer the instructions published by respective CAs to import SSL certificate into tomcat server. Some CA will provide the certificates with an extension .p7b. In such a case you can ...Applying an SSL Certificate (Wildcard - PFX)
Please Note: These are general guidelines, It is always advised to refer the instructions published by respective CAs to import SSL certificate into tomcat server. Importing WildCard SSL certificate (PFX format) Please follow the below steps: 1. ...Troubleshooting SSL Issues During ServiceDesk Plus Integration with AnalyticsPlus
This guide helps troubleshoot SSL-related issues when integrating ServiceDesk Plus (SDP) with AnalyticsPlus. Scenario 1: No Valid SSL Certificate Applied in AnalyticsPlus If you have not applied a valid SSL certificate in AnalyticsPlus: Check ...Unable to integrate ServiceDesk Plus with Analytics Plus after applying SSL
Note: This problem occurs only with self signed certificates in Analytics Plus. Issue: [10:23:16:526]|[09-05-2016]|[SYSERR]|[INFO]|[68]|: javax.net.ssl.SSLHandshakeException: sun.security.validator.ValidatorException: PKIX path building failed: ...FAILURE :Exception in creating table in Analytics. JSON Out of Range error
When synchronizing from Servicedesk Plus to Advanced Analytics fresh installation of build 3100 we get the error: FAILURE :Exception in creating table in Analytics. The issue seems with the synchronization of request additional fields. Here is the ...