Stores Used by the Session Server
As a convenience, the identity certificates for each type of server are available at the following locations, outside of their respective keystores mentioned below.
HACloud session server certificate -
MSS certificate -
Session server keystore and truststore
The keystore and truststore used by the session server are described in the table below.
bcfks(Bouncy Castle FIPS keystore)
Trust for host emulation connections is managed by MSS. See Make a secure emulation connection to a trusted host
To change a keystore or truststore password
HACloud/sessionserver/conf/container.properties, update these settings:
For security reasons it is best to use an obfuscated password. To generate one, run the following command from the HACloud/sessionserver directory:
../java/jre/bin/java -cp ./lib/jetty-util-<version>.jar org.eclipse.jetty.util.security.Password passwordToObfuscate