Uploaded image for project: 'Service Design and Creation'
  1. Service Design and Creation
  2. SDC-264

Jetty default ssl certificate no longer valid

XMLWordPrintable

    • Icon: Bug Bug
    • Resolution: Done
    • Icon: High High
    • None
    • None
    • None
    • None

      the default keystore for jetty uses MD5withRSA algorthim. Since java 1.8 u131 or so this is a disabled algorthm.  AAI and MSO will get a SDC error with invalide certificate because their java.security settings will block use of the MD5 and MD5withRSA based certificate. Most likely an new certificate/keystore is needed and the cooresponding password in jetty configuration.

      https://lists.onap.org/pipermail/onap-discuss/2017-September/004587.html

      https://lists.onap.org/pipermail/onap-discuss/2017-September/004351.html

       

       

        1. Screenshot 2017-09-14 11.27.13.png
          Screenshot 2017-09-14 11.27.13.png
          274 kB

            tgitelman tgitelman
            bdfreeman1421 bdfreeman1421
            Votes:
            0 Vote for this issue
            Watchers:
            3 Start watching this issue

              Created:
              Updated:
              Resolved: