Notes on configuring JMX remote
1. If we don't need authorization, just add the following to CATALINA_OPTS:
...
- add the following line to jmxremote.password
Wiki Markup
controlRole [passwd]
- the jmxremote.password file should only be readable and writable by owner (owner should be the same that runs the web server process).
...
convert the server's certificate and key to pkcs format:pkcs12 format (please note that the ca.crt is the ca that signed the server certificate, so it is the server CA, not the client CA)
openssl pkcs12 -in server.crt -inkey server.key -export -out server.p12 -nodes -CAfile ca.crt
afterwards, you should be able to look at the pkcs12 keystore using: /usr/local/jdk1.6.0/bin/keytool -list -keystore server.p12 -storetype pkcs12
convert the pkcs12 keystore to jks keystore:
...