Replacing an expiring server certificate file (server certificate and private key, stored in jks or p12/pfx) for the TIBCO Spotfire Server
Article ID: KB0076833
Updated On:
| Products | Versions |
|---|---|
| Spotfire Server | 7.5 and higher |
Description
If you have configured HTTPS on the TIBCO Spotfire Server and the existing server certificate is expiring, then follow the steps mentioned in the resolution to replace the expiring server certificate with a new one.
Issue/Introduction
Replacing an expiring server certificate file (server certificate and private key, stored in jks or p12/pfx)
Resolution
Here are the steps to replace a server certificate which is expiring:
For more details, refer to the below attached document listing similar steps in detail.
- Obtain a new server certificate and private key, stored in a Java keystore (JKS) or PKCS #12 keystore (P12/PFX).
- Stop the TIBCO Spotfire Server.
- Copy the keystore file to <server installation dir>/tomcat/certs folder. We suggest using the server's hostname as keystore filename.
- Open <server installation dir>/tomcat/conf/server.xml file in edit mode and locate the section containing the configuration template for an HTTPS connector.
- According to the new server certificate, make the appropriate changes for the settings certificateKeystoreFile, certificateKeystorePassword, certificateKeystoreType and certificateKeyAlias in the server.xml and save the file. (Copy the certificate name from tomcat/certs folder and paste it in certificateKeystoreFile setting of "server.xml")
- Start the TIBCO Spotfire Server
- Launch a browser and try to login to Spotfire web (with HTTPS) which would be successful.
For more details, refer to the below attached document listing similar steps in detail.
Additional Information
Attachments
Feedback
Yes
No
Powered by
