Hello @midhun1909 -
Yes, there are additional configurations you need to check on the AEM side to enable HTTPS access with the certificate you obtained from the CA.
Here are the steps you should follow:
1. Import the Certificate into the Windows Certificate Store:
- Open the Windows MMC (Microsoft Management Console) by running the "mmc" command in the command prompt.
- Add the "Certificates" snap-in and choose the "Computer account" option.
- Navigate to the "Personal" certificate store and import the certificate provided by the CA into the "Personal" store.
2. Export the Certificate with the Private Key:
- Locate the certificate you imported in the "Personal" store.
- Right-click on the certificate and select "All Tasks" > "Export".
- Follow the export wizard to export the certificate with the private key in PKCS12 format (.pfx file).
3. Configure the AEM Truststore:
- Copy the exported .pfx file to your AEM server.
- Open the AEM Start script (start.bat/start), which is typically located in the "crx-quickstart/bin" directory.
- Add the following JVM options to the script:
-Djavax.net.ssl.keyStore=path-to-pfx-file
-Djavax.net.ssl.keyStoreType=PKCS12
-Djavax.net.ssl.keyStorePassword=password-for-pfx-file
4. Restart the AEM Instance:
- Save the changes to the start script and restart the AEM instance.
- AEM will use the configured Truststore with the SSL certificate and private key.
Make sure to replace "path-to-pfx-file" with the actual path to the exported .pfx file, and "password-for-pfx-file" with the password you set during the export process.
After restarting the AEM instance with the updated Truststore configuration, you should be able to access your AEM instance using HTTPS.
