您能帮助我们确定如何将密钥长度从1024增加到2048以便从NodeDefaultKeyStore附加以下证书吗?
答案 0 :(得分:0)
Then, Go to SSL Certificate and key management > Manage FIPS > Convert Certificates
Then, select Strict SHA256withRSA and select 2048 bits on key size.
Click on Apply, save on Master Configuration
Then,
From the Adminconsole expand System Administration > click on nodes > Fully synchronized
Then,
go to SSL certificate and keymanagement > Keystores and certificates > Nodedefaultkeystore > personal certificate and click on "default" certificate and see if RSA Key is 2048 bits.```
#### or Method 2:
``` Run from Deployment Manager's bin folder:
wsadmin.sh
The following command update key size and algorithm:
$AdminTask convertCertForSecurityStandard {-fipsLevel FIPS140-2 -signatureAlgorithm SHA256withRSA -keySize 2048 }
The following command save the above configuration changes.
$AdminConfig save
The above Command will update and replace all default certificate that comes in websphere application server with a new 2048 bit key size for example files key.p12 for cell and node, trust.p12, root-key.p12..etc ```