Create and import self-signed certificates

Before creating and importing self-signed certificates, you must perform prerequisite steps to ensure that the host name does not return a fully qualified name.

To create and import self-signed certificates:

1. Before creating and importing self-signed certificates, perform prerequisite steps. You must ensure that the host name does not return a fully qualified name for the machine. Check the following commands before proceeding:
   1. Check that the command returns a non-fully qualified name:

      > hostname

   2. Check that the command returns a fully qualified name:

      > hostname -f

   3. Check that the command returns the domain:

      > hostname -d

2. Change to install directory:

   > cd <arr_install_dir>/bin

3. Execute create-and-import-selfsigned-certs.sh to install the self-signed certificate.

   > sh create-and-import-selfsigned-certs.sh

   This performs the following:

   • creates the keystore for the private internal key
   • exports the certificate that authenticates the internal key
   • imports the trusted certificates into the truststore
   • provides these certificates to the server to use for authentication purposes

     Note:

     Before proceeding to the next step, copy the certificate of the host computer <HOSTNAME.cer> to <arr_install_dir>/bin/keystore folder.
4. To install a host machine's certificate, run the script:

   > sh import-hostname-cert.sh

   Enter the host name of the machine whose certificate is being imported into the truststore: <HOSTNAME>.

• Avoid a Java security certificate exception