How to publish (replicate) Global Trust Store and how to verify Global Trust Store is published on AEM 6.5 ?

Forum|Forum|5 years ago
March 25, 2020
3 replies
4970 views

Hi All,

Please can you advise best practice how to publish (replicate) Global Trust Store settings and how to verify that Global Trust Store is published on AEM 6.5 ?

Global Trust Store is accessible (on Author) via http://localhost:4502/libs/granite/security/content/truststore.html

Thank you for your time and advice.

This post is no longer active and is closed to new replies. Need help? Start a new post to ask your question.

Best answer by Gaurav-Behl

TrustStore location is /etc/truststore. I haven't tried to replicate or move via package but you may try that

Gaurav-BehlAccepted solution

Level 10

TrustStore location is /etc/truststore. I haven't tried to replicate or move via package but you may try that

V

vivekanand-mish

Adobe Employee

Just replicating /etc/truststore does not solve this You must copy the hmac/master keys were physically copied from the filesystem (/crx-quickstart/launchpad/felix/bundle25/data) to the other instance.

A

aemmarc2

Adobe Employee

Why would you want to replicate that out of curiosity?

Secondly, unless the hmac/master keys were physically copied from the filesystem (/crx-quickstart/launchpad/felix/bundle25/data) to this other instance day-0 then I wouldn't expect any cryptographic hash-functions to be able to sign.

V

vivekanand-mish

Adobe Employee

Just replicating /etc/truststore does not solve this. You must copy the hmac/master keys files physically from the filesystem (/crx-quickstart/launchpad/felix/bundle25/data) too to the other instance. So the steps are:

1. Replicate /etc/truststore

2. Copy the hmac/master keys files physically from the filesystem ( e.g. /crx-quickstart/launchpad/felix/bundle25/data) to all other publish instances

Sign up

Login with SSO

Login to the community

Login with SSO

Scanning file for viruses.

This file cannot be downloaded