This topic describes how to generate certificates if your Endeca Server deployment is installed in secure (SSL) mode.
The pre-requisite to this task is that you must have installed Endeca Server in SSL mode.
The utility is located in the $DOMAIN_HOME/EndecaServer/bin directory. For more information on the generate_ssl_keys utility, see the Oracle Endeca Server Security Guide.
To generate SSL certificates:
generate_ssl_keys --username ES_Admin --password welcome1 --sslPassphrase thx1138A successful procedure is indicated when you see a message that ends as follows:
The following non-dynamic attribute(s) have been changed on MBeans that require server re-start: MBean Changed : com.bea:Name=AdminServer,Type=SSL,Server=AdminServer Attributes changed : HostnameVerificationIgnored, JSSEEnabled Activation completed Done! Your WLS server(s) may need to be restarted for all changes to take effect.
The next task is to import the PKCS12 certificate into your browser.
Keep in mind that when issuing Endeca Server commands, you should use the SSL version of the endeca-cmd script, which resides by default in the $DOMAIN_HOME/EndecaServer/bin directory.