Ò»¡¢ntekeystentry±¨´í

ijÒøÐпͻ§µÄclusterÀïͬʱ°²×°ÁËSpectrum Symphony + Spectrum Conductor£¬ÊôÓÚmultihomedģʽ¡£ÕâÖÖ°²×°ºÍÅäÖÃÊÇÖ§³ÖµÄ£¬ÏêÇé¿ÉÒԲο¼IBMÎĵµ¡£

³öÓÚ°²È«ÒªÇó£¬ËûÃÇÔÚtier 2ºÍtier 3ÆôÓÃÁËTLS£¬ÏêÇé²Î¿¼IBMÎĵµ¡£½á¹ûÊÇ£¬ÔÚtier 3Ò»ÇÐ˳Àû£¬·ÃÎÊÍøҳûÓÐÎÊÌ⣻µ«ÊÇÔÚtier 2È´Óöµ½ÁËÎÊÌ⣬±¨´íÈçÏ¡£

"Failed to retrieve the Spark applications. Connection refused. Ensure that either the required IBM Spectrum Conductor services are running (ascd and REST) or SSL is configured properly."
ÒòΪֻÓÐtier 2²ÅÓÐÎÊÌâ¶øtier 3ûÎÊÌâÎÊÌ⣬¶øÇÒtier 2ºÍtier 3µÄcertificate¶¼·ÅÔÚÏàͬµÄkeystoreÀËùÒÔÎÒÃÇÓÐÀíÓÉ»³ÒÉ¿ÉÄÜtier 3µÄcertificateÅäÖóö´íÁË¡£µ±È»£¬ÄÔ×ÓÀïÏÈÒªÓйØÓÚcertificateµÄÏà¹Ø֪ʶ£¬²»È»¿ÉÄÜÒ²²»»á»³Òɵ½Õâ¡£SSL certificateÏà¹Ø֪ʶ¿ÉÒԲο¼ÎÒµÄÕâƪ"Ò»ÎĶÁ¶®HTTP, HTTPS, SSLºÍTLS"½²½â¡£

ÓÚÊÇ£¬ÎÒÃÇ¿ÉÒÔͨ¹ýÏÂÃæµÄ²½ÖèÀ´²âÊÔcertificateµÄÅäÖá£

openssl s_client -CAfile /path/to/target/keystore/file?-connect target_FQDN:target_port

?Õë¶Ôtier 3ÉÏ£¬²âÊԵõ½µÄ½á¹ûÈçÏ£¬Á¬½Ó״̬ÊÇCONNECTED£¬certificate chainºÍcertificate¶¼¿ÉÒÔ·µ»ØÀ´£¬Ã»ÎÊÌâ¡£

$openssl s_client -CAfile /opt/sym/certificates/truststore.pem -connect bens3-a1.svr.us.jpm.net:8643
CONNECTED(00000003)
depth=2 DC = NET, DC = JPMCHASE, DC = EXCHAD, CN = JPMCROOTCA
verify return:1
depth=1 DC = net, DC = jpmchase, DC = exchad, CN = PSIN0P551
verify return:1
depth=0 C = US, ST = NJ, L = Jersey City, O = JPMorg, OU = Compute Backbone, CN = bens3-a1.svr.us.jpm.net
verify return:1
---
Certificate chain
0 s:/C=US/ST=NJ/L=Jersey City/O=JPMorg /OU=Compute Backbone/CN=bens3-a1.svr.us.jpm.net
i:/DC=net/DC=jpmchase/DC=exchad/CN=PSIN0P551
1 s:/DC=net/DC=jpmchase/DC=exchad/CN=PSIN0P551
i:/DC=NET/DC=JPMCHASE/DC=EXCHAD/CN=JPMCROOTCA
---
Server certificate
-----BEGIN CERTIFICATE-----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......
cyxDTj1TZXJ2aWNlcyxDTj1Db25maWd1cmF0aW9uLERDPWV4Y2hhZCxEQz1qcG1j
aGFzZSxEQz1uZXQ/Y2VydGlmaWNhdGVSZXZvY2F0aW9uTGlzdD9iYXNlP29iamVj
dENsYXNzPWNSTERpc3RyaWJ1dGlvblBvaW50MIIBLgYIKwYBBQUHAQEEggEgMIIB
HDA5BggrBgEFBQcwAoYtaHR0cDovL2FkY3MuanBtY2hhc2UubmV0L2NybC9QU0lO
MFA1NTEoMSkuY3J0MCkGCCsGAQUFBzABhh1odHRwOi8vYWRjcy5qcG1jaGFzZS5u
ZXQvb2NzcDCBswYIKwYBBQUHMAKGgaZsZGFwOi8vL0NOPVBTSU4wUDU1MSxDTj1B
SUEsQ049UHVibGljJTIwS2V5JTIwU2VydmljZXMsQ049U2VydmljZXMsQ049Q29u
ZmlndXJhdGlvbixEQz1leGNoYWQsREM9anBtY2hhc2UsREM9bmV0P2NBQ2VydGlm
aWNhdGU/YmFzZT9vYmplY3RDbGFzcz1jZXJ0aWZpY2F0aW9uQXV0aG9yaXR5MA4G
A1UdDwEB/wQEAwIFoDA8BgkrBgEEAYI3FQcELzAtBiUrBgEEAYI3FQiBg5o1g/PQ
QIKBkwyC3ZYCk506RIOUsA+Etq87AgFkAgEKMB0GA1UdJQQWMBQGCCsGAQUFBwMB
BggrBgEFBQcDAjAnBgkrBgEEAYI3FQoEGjAYMAoGCCsGAQUFBwMBMAoGCCsGAQUF
Bw