Renew-Self-Signed-Certificates
Renews all self-signed certificates in the specified server’s keystore.
Synopsis
asadmin renew-self-signed-certificates [--help]
[--reload={false|true}]
[--domainName=name]
[--domainDir=directory]
[--node=nodeName]
[--nodeDir=directory]
[--listener=listenername]
[--target=instanceName]
Description
The renew-self-signed-certificates subcommand renews all self-signed certificates in a keystore using the old distinguished name and alias.
These certificates are then placed in the key and trust stores of the target instance or listener, replacing the old ones.
Options
--help:
-?:
Displays the help text for the subcommand.
--target:
This option helps specify the target on which you are renewing its self-signed certificates. Valid values are:
server;;
Applies to the default server instance. This is the default value.
cluster_name;;
Applies to every server instance in the cluster.
instance_name;;
Applies to a specified sever instance.
--reload:
Whether the HTTP listeners should be reloaded. Defaults to false
--listener:
The name of the HTTP or IIOP listener to add the certificate to.
--domainname:
The name of the domain where the target instance exists.
+
Defaults to domain1 or the existing domain if only one exists.
--domainDir:
The path to the directory containing the target domain.
+
Defaults to
as-install/glassfish/domains
--node:
The name of the node where the target instance exists.
+
Defaults to localhost-$domainname
--nodeDir:
The path to the directory containing the target node.
+
Defaults to as-install/glassfish/nodes
Examples
Example 1 Renews all self-signed certificates on the default domain
asadmin renew-self-signed-certificates