...
| Code Block | ||
|---|---|---|
| ||
JAVA_HOME=/usr/lib/jvm/java-1117-openjdk-amd64 KEYTOOL=$JAVA_HOME/bin/keytool |
Ensure that JAVA_HOME points to the correct Java installation directory for your system. If you are using a different version of Java, adjust the path accordingly.
Create a new keystore, with a corresponding private key
...
| Code Block | ||
|---|---|---|
| ||
vim /etc/default/unimus # append behind existing config, all on same line -Dserver.ssl.key-store=/opt/unimus/keystore.p12 -Dserver.ssl.keyStoreType=PKCS12 -Dserver.ssl.keyAlias=UnimusHttpsCert -Dserver.ssl.key-store-password=[insert password here] |
Note: When running Unimus in Docker, add the Java parameters to your docker-compose file and persist the volume containing the keystore file to ensure the SSL certificate is retained if the container is restarted or recreated:
| Code Block | ||
|---|---|---|
| ||
services:
unimus:
image: croc/unimus
environment:
- 'JAVA_OPTS=-Dserver.ssl.key-store=/opt/unimus/keystore.p12 -Dserver.ssl.keyStoreType=PKCS12 -Dserver.ssl.keyAlias=UnimusHttpsCert -Dserver.ssl.key-store-password=[insert password here]'
volumes:
- './unimus:/opt/unimus' |
Restart the Unimus service (or container). After startup, Unimus will be available over HTTPS.
On Windows:
On Windows, you can usually generate the CSR using the Windows built-in Certificate Manager. This CSR can then be signed by your Windows CA.
...
| Code Block | ||
|---|---|---|
| ||
set JAVA_HOME=C:\Program Files\Unimus\jre11jre17 set KEYTOOL=%JAVA_HOME%\bin\keytool cd "C:\Program Files\Unimus" keytool -list -storetype PKCS12 -keystore your-pfx-file-path-here.pfx -storepass keystore_password |
...