Restarting EJBCA and Creating new TLS Certificates

To restart EJBCA and create new TLS Certificates, do the following:

  • SSH into each node and run the following command:
# service wildfly restart

Generate new TLS certificates on each node so they have a new certificate from the new centralized EJBCA CA. Using the -P option will generate new certificates with the new public hostname for each node. For more detailed information, refer to the TLS Certificate Generation Guide.

  • Run the following command on each node:
# /opt/PrimeKey/support/new_tls_cert.sh -p