Page History
The install procedure above initially configures eagle-i with a self-signed certificate; this is acceptable for an
Status | ||
---|---|---|
|
Status | ||||
---|---|---|---|---|
|
...
1.
...
Transfer certificate, certificate chain and private key to the EC2 instance
Warning |
---|
These files are security-sensitive. Please make sure they are transferred to you in a secure manner (e.g. a memory stick, or using the scp command) and delete them from your personal machine once they are installed. If in doubt, please ask for assistance of your IT department. |
...
- Using a terminal
- SSH to your EC2 instance and create a directory for the files to reside in,
/opt/eaglei/install.
Code Block language bash theme Emacs linenumbers true skc-macbook:~ sophia$ ssh -i "aws-eaglei-ami.pem" root@ec2-52-207-177-113.compute-1.amazonaws.com Last login: Wed Aug 10 13:19:32 2016 from 134.174.140.154 [root@ip-172-31-54-208 ~]# mkdir /opt/eaglei/install
In another terminal window, go to the directory containing the certificate files
cd /my-home/aws/cert
Do a SCP of the files to the newly created install folder on your EC2 instance (substitute your own file names and public hostname)
scp -i "aws-eaglei-ami.pem" key.pem cert.crt ca.crt root@ec2-52-207-177-113.compute-1.amazonaws.com
Code Block language bash linenumbers true cd /my-home/aws/cert scp -i "aws-eaglei-ami.pem" key.pem cert.crt ca.crt root@ec2-52-207-177-113.compute-1.amazonaws.com:/opt/eaglei/install/.
- SSH to your EC2 instance and create a directory for the files to reside in,
- Using PuTTY/PSCP
- Follow the instructions in the section Transferring files with PSCP at the end of the AWS/PuTTY guide
...
2. Install certificate on EC2 instance
In the SSH terminal,
- Go to the install directory created above
- cd /opt/eaglei/install
- Install the certificates
sh /bin/cert-install.sh -b ca.crt -c cert.crt -k key.pem
- At the prompt, enter the key's password. Tomcat will restart when the
cert-install.sh
script is finished.
3.
...
Verify certificate has been installed correctly
Using an online SSL validation service, such as http://www.geocerts.com/ssl_checker, enter your public hostname to verify that the certificate has been installed correctly
...
4.
...
Secure cleanup
Be sure to remove the security sensitive files used for installation
...