commvault.com commvault.com
Solved

Tomcat Certificate expiry period

  • 7 September 2022
  • 5 replies
  • 155 views
Base64
Rank
Badge +4

Hey all, 

 

ich habe eine Frage und zwar hab ich gerade ein Zertifikat ausgetauscht und die Zeit für den Ablauf auf 397 Tage gesetzt. 

 

Das Zertifikat funktioniert auch, aber es läuft nach 87 Tagen ab. 

 

Wie kann das sein und warum gehen nur 397 Tage ? 

 

Hier ist der String: 

keytool -certreq -keyalg RSA -alias tomcat -file "D:\Program Files\Commvault\ContentStore\Apache\conf\cvcert22.csr" -keystore "D:\Program Files\Commvault\ContentStore\Apache\conf\cvcert22.jks" -validity 397 -ext SAN=dns:XXXX

 

Added translation:

hey all, I have a question, I just exchanged a certificate and set the expiry time to 397 days. The certificate also works, but it expires after 87 days. How can that be and why is it only 397 days?

 

icon

Best answer by Mike Struening RETIRED 29 September 2022, 22:32

View original

5 replies

Mike Struening RETIRED
Rank
Userlevel 7
Badge +23

Guten abend, @Base64 !

Everything here looks valid, and the days are set to 397 days, clearly.

Let me see if I can get some other eyes on this one, though it might be best to get a support case created for this as it is clearly not working as written.

 

https://www.linkedin.com/in/michael-struening
J
Rank
Userlevel 2
Badge +6

Hello @Base64,

 

Thank you for reaching out to us.

 

We have discussed this issue internally with several of our internal resources and request that you raise a support case with our Server team to investigate further.

 

With that case we will need the following provided for the investigation:
-Logs for the CommServe

-Logs for the WebServer

-Copy of the CommServe Database

-Screenshot/logging/output showing the time the command was originally run

-Screenshot/logging/output showing that the cert key expired prematurely

Once created, please share the incident number here so we can track it.

Regards,

 

Josh

Base64
Rank
Badge +4

Hello @Base64,

 

Thank you for reaching out to us.

 

We have discussed this issue internally with several of our internal resources and request that you raise a support case with our Server team to investigate further.

 

With that case we will need the following provided for the investigation:
-Logs for the CommServe

-Logs for the WebServer

-Copy of the CommServe Database

-Screenshot/logging/output showing the time the command was originally run

-Screenshot/logging/output showing that the cert key expired prematurely

Once created, please share the incident number here so we can track it.

Regards,

 

Josh

Hey @Josh Perkoff , 

 

this is the Number Incident 220908-200

Mike Struening RETIRED
Rank
Userlevel 7
Badge +23

Thanks!  I’ll keep an eye on it.

https://www.linkedin.com/in/michael-struening
Mike Struening RETIRED
Rank
Userlevel 7
Badge +23

Sharing the case resolution:

- We configured a SelfSigned Certiifcate as per your request

it is always recommended that you should create and install a certificate authority (CA) signed certificate for secured access using HTTP over SSL (HTTPS) to the Web Console, Compliance Search, and other web applications.

https://www.linkedin.com/in/michael-struening

Reply


Terms & ConditionsCookie settings