Reputation: 1
Ldap certificates expired on a WebSphere application server initially configured with ldap
We are running WebSphere Application Server v8.5 on AIX 7, which we configured to use ldap security. Everything is working fine, but project went halt for some time and our WAS was down. Now we see that ldap cerficates were expired, hence we are unable to connect to dmgr & admin console. Can somebody help to resolve it? We know how to configure ldap on WAS, but dont no how to change expired ldap cerficate with new cerficates. (We received new non-expiry certificates from ldap team but dont no how to configure it on WAS).
Upvotes: 0
Views: 733
Answers (1)
Reputation: 18020
You need to disable security, restart dmgr, replace certificates and reenable security.
To disable security:
- stop/kill the dmgr
run the following from the
dmgr\binfolder:wsadmin -conntype NONE
At the wsadmin prompt, type securityoff and then type exit.
Restart your dmgr.
UPDATE
Do you have Federated or Standalone Ldap configured? You should have in LDAP configuration link to SSL configuration. There you will need to add your new certificate to the Signers store (this is very simplified description as I'm not sure which repository you are using).
Upvotes: 1
Related Questions
- certificate not trusted by Websphere
- How to resolve Websphere web application login delay due to LTPA token expiration?
- How to configure WebSphere to sync with LDAP on regular period?
- websphere ssl handshake failure
- IBM Liberty SSL HANDSHAKE FAILURE
- Certificate chaining error in Websphere
- SSLHandshakeException republish error with WebSphere 8.5 using Eclipse Mars
- how to generate new SSL certificate in websphere application server liberty v. 8.5.5.0
- How do I install a certificate in the trusted certificates keystore within WebSphere?
- WAS 7.0 LDAP configuration