To restart EJBCA and create new TLS Certificates, follow the steps below:
- SSH into each node and run the following command:
# service wildfly restart
CODE
Generate new TLS certificates on each node so they have a new certificate from the new centralized EJBCA CA. Using the -P
option will generate new certificates with the new public hostname for each node. For more detailed information, refer to the TLS Certificate Generation Guide.
- Run the following command on each node:
# /opt/PrimeKey/support/new_tls_cert.sh -p
CODE