/product-groups/tridion/tridion-sites/b/techweblog/posts/sdl-web-8-securing-micro-services-with-ssl-and-a-ca-certificateIn this document we will explain how to create a custom keystore and import the CA certificate and matching key pair allowing SSL support on Tomcat Embedded as used on SDL Micro-services. The Keystore steps are general and may be used for any CA Certificateen-USTelligent Community 12 Non-Productionhttps://uat.community.rws.com/product-groups/tridion/tridion-sites/b/techweblog/posts/sdl-web-8-securing-micro-services-with-ssl-and-a-ca-certificateFri, 09 Jun 2017 19:09:36 GMT10acfa76-f078-475b-a7ef-fc5b3e8d2934:5c47bd9d-8d4d-456f-9ec5-2edc6008d378Paul Brou0<p>Great stuff Paul!</p> <img src="https://uat.community.rws.com/aggbug?PostID=6825&AppID=95&AppType=Weblog&ContentType=0" width="1" height="1">https://uat.community.rws.com/product-groups/tridion/tridion-sites/b/techweblog/posts/sdl-web-8-securing-micro-services-with-ssl-and-a-ca-certificateTue, 23 May 2017 07:20:54 GMT10acfa76-f078-475b-a7ef-fc5b3e8d2934:5c47bd9d-8d4d-456f-9ec5-2edc6008d378Hao Peng0<p>Nice guide Paul. Thank you</p> <img src="https://uat.community.rws.com/aggbug?PostID=6825&AppID=95&AppType=Weblog&ContentType=0" width="1" height="1">https://uat.community.rws.com/product-groups/tridion/tridion-sites/b/techweblog/posts/sdl-web-8-securing-micro-services-with-ssl-and-a-ca-certificateMon, 08 May 2017 18:47:49 GMT10acfa76-f078-475b-a7ef-fc5b3e8d2934:5c47bd9d-8d4d-456f-9ec5-2edc6008d378Jan Horsman0<p>thanks!</p> <img src="https://uat.community.rws.com/aggbug?PostID=6825&AppID=95&AppType=Weblog&ContentType=0" width="1" height="1">https://uat.community.rws.com/product-groups/tridion/tridion-sites/b/techweblog/posts/sdl-web-8-securing-micro-services-with-ssl-and-a-ca-certificateThu, 04 May 2017 10:48:21 GMT10acfa76-f078-475b-a7ef-fc5b3e8d2934:5c47bd9d-8d4d-456f-9ec5-2edc6008d378Paul Dessart0<p>Dear Jan,</p> <p>Thanks for your comment.</p> <p>While testing with R&amp;D to validate this issue, we came against the fact that application.yml doesn&#39;t seem to work when using a PKCS12 keystore. &nbsp;It works well with the self-signed certificate. </p> <p>The major issue I saw from the beginning was indeed an issue on how to import the private key and the CA certificate in once in the keystore. </p> <p>For this I had to do some research and as customers were reporting the issue, I believe it was worth an article.</p> <p>Anyway, we are working to update the documentation too so this will be available on docs soon too. </p> <img src="https://uat.community.rws.com/aggbug?PostID=6825&AppID=95&AppType=Weblog&ContentType=0" width="1" height="1">https://uat.community.rws.com/product-groups/tridion/tridion-sites/b/techweblog/posts/sdl-web-8-securing-micro-services-with-ssl-and-a-ca-certificateThu, 04 May 2017 10:23:54 GMT10acfa76-f078-475b-a7ef-fc5b3e8d2934:5c47bd9d-8d4d-456f-9ec5-2edc6008d378Jan Horsman0<p>Congrats with your first community artice, Paul!</p> <p>What the difference between the procedure you describe and what is documented in the SDL documentation? Your article is about CA authority signed while the procedure in the docs is self-signed. But there also are differences like .property vs .yaml configuration, and how the certificate is stored?</p> <img src="https://uat.community.rws.com/aggbug?PostID=6825&AppID=95&AppType=Weblog&ContentType=0" width="1" height="1">https://uat.community.rws.com/product-groups/tridion/tridion-sites/b/techweblog/posts/sdl-web-8-securing-micro-services-with-ssl-and-a-ca-certificateTue, 02 May 2017 09:34:28 GMT10acfa76-f078-475b-a7ef-fc5b3e8d2934:5c47bd9d-8d4d-456f-9ec5-2edc6008d378Alvin Reyes0<p>Nice, thanks for sharing, Paul! This makes setting up SSL much more tangible, especially if&nbsp;it&#39;s a &quot;new&quot; topic. And it&#39;s great seeing more &quot;how to&quot; guides in the community (again).</p><img src="https://uat.community.rws.com/aggbug?PostID=6825&AppID=95&AppType=Weblog&ContentType=0" width="1" height="1">