SSL certificate installation - part 1
Problem: Need to create and add new wildcard SSL certificate to Unified Workspace server.
Prerequisite(s):
- Download and install KeyStore Explorer tool on workstation
Solution(s): Below instructions will walk you through process of creating a new keystore and importing certificate. If you are looking for renewal instructions, you may skip to "Create certificate request (CSR):"
Create keystore file in KeyStore Explorer:
- Click File -> New
- Select JKS for new keystore type
- Click Tools -> Generate Key Pair
- Select RSA and 2048
- Click the edit name button
- Enter CN as *.company.com (replacing company.com with your domain)
- Enter OU with your organization department
- Enter O with your organization name
- Enter L with your city
- Enter ST with your state
- Enter C with your country code
- Click OK when finished entering data
- Click OK to create the keypair
- Click OK with default Alias (ex: *.company.com)
- Enter password for key pair*
IMPORTANT - make sure to use a secure password
IMPORTANT - make sure to document password - Click File -> Save As
- Enter keystore password
IMPORTANT - make sure to use same password as key pair - Enter name of file as wildcard.jks
*This is the relayuser account's password. If you have the current password documented, use the documented password.
Create certificate request (CSR):
- Open keystore file (if not already opened)
- Right-click on highlighted entry (ex: *.company.com)
- Choose Generate CSR
- Choose save location
- Click OK button
- Send CSR to Certificate Authority (CA)
Import certificate:
- Download/convert certificate file from CA to P7B format
- Open wildcard.jks file in KeyStore Explorer
- Right-click on entry
- Choose Import CA Reply
- Choose the P7B file
- Accept prompts
- Click File -> Save
Continue to part 2.
Reference(s):
keywords:
cert, jks, java, keytool
Can't find the KB
Unable to find the KB to address your issue ?
Recent Articles
Change Reset Password Button Text
Change the text of the "Reset Password" button on the UW Login Page How to change the text of the Reset Password button on the Login Page. Login to webNetwork and open webAdmin on your Relay Central Server Expand Customization Center Expand Tenants ...Remove Reset Password Button From Login Page
Remove the Reset Password Button from the Login Page How to remove the Reset Password button from the Unified Workspace login page. Login to webNetwork and open webAdmin on your Relay Central Server Expand Customization Center Expand Tenants Expand ...Lenovo Unified Workspace End-of-Life Questions and Answers
As of January 31st 2024, Lenovo Unified Workspace (formerly Stoneware WebNetwork) is no longer supported. This means that we no longer provide licenses, downloads, updates, patches, or technical assistance for this product. If you have any questions ...How do I determine my Unified Workspace license expiration date?
The best method for determining the licensing information including the expiration date of your Unified Workspace license: Login to your 8090 management console on each server This may take remoting into each LUW server and relay, opening a browser, ...Lenovo Unified Workspace 7.0.2.13 Released
Highlights of Unified Workspace 7.0.2.13 Before you install: Please view the installation notes here. 7.0.2.13 requires a 7.0 license file. Below is a list of enhancements and fixes released in Unified Workspace 7.0.2.13 Fixed external storage ...
Related Articles
SSL certificate installation - part 2
Problem: Need to create and add new wildcard SSL certificate to Unified Workspace server. Prerequisite(s): Completed part 1 Access to keystore password Solution(s): Below instructions will walk you through process of placing a new keystore on ...SSL Root Certificate causing issues with Slingshot
Issue: When trying to run a Slingshot webApp on a workstation, the Slingshot utility gives the following error: Error: "Problem found with the Secure Sockets Layer(SSL) certificate sent by the server. Please note that self-signed certificates cannot ...How do I renew my SSL certificate?
This process is in 3 basic parts. 1 - Create the Keystore 2 - Generate the CSR 3 - Import the cert The documentation below has several methods to complete this process. The first is a how to use a free Java gui tool called Portecle, the second is ...Convert PFX certificate to JKS keystore using KeyStore Explorer
Issue: Can we import the wildcard SSL Certificate we already have on our IIS server(s)? Solution: Please see the following documentation on how to convert a PFX certificate, exported from an IIS server, to a Java JKS keystore. Once you have your new ...DC won’t obtain SSL certificate automatically
Customer installed Enterprise CA server in their AD forest and some Domain Controllers won’t pick up an SSL certificate. The customer used LDP.exe to verify all of their DC to see if they had SSL enabled. They found a DC that did not pick up an ...