Run the Web server self-signed script on one of the Fabric nodes. The script’s purpose is to create a key in the key store.
certifcates.sh genkey <ALIAS> [CNAME] [PASSWORD]
In case of multiple Fabric nodes, if you want that all the nodes will have the same certificate - copy the ${user.home}/.keystore
on each node into the same location.
In case that Fabric is running in Docker container, the user may be different. Then you need to change the file owner by running the following command:
chown root.root ~/.keystore
Uncomment the following in the config.ini file:
#WEB_SERVICE_SECURE_PORT=8443
Note that the password of the certification file should be defined here:
#WEB_SERVICE_CERT_PASSPHRASE=
https://10.10.10.10:8443/
https://10.10.10.10:8443/deploy
In order to securely access Fabric Data via its JDBC driver, the TLS option is set to true by default in the [jdbc-server] section of the config.ini file:
## Turn on TLS for the Fabric driver protocol
#SECURE=true
To disable hardening, set the SECURE flag to false.
Run the Web server self-signed script on one of the Fabric nodes. The script’s purpose is to create a key in the key store.
certifcates.sh genkey <ALIAS> [CNAME] [PASSWORD]
In case of multiple Fabric nodes, if you want that all the nodes will have the same certificate - copy the ${user.home}/.keystore
on each node into the same location.
In case that Fabric is running in Docker container, the user may be different. Then you need to change the file owner by running the following command:
chown root.root ~/.keystore
Uncomment the following in the config.ini file:
#WEB_SERVICE_SECURE_PORT=8443
Note that the password of the certification file should be defined here:
#WEB_SERVICE_CERT_PASSPHRASE=
https://10.10.10.10:8443/
https://10.10.10.10:8443/deploy
In order to securely access Fabric Data via its JDBC driver, the TLS option is set to true by default in the [jdbc-server] section of the config.ini file:
## Turn on TLS for the Fabric driver protocol
#SECURE=true
To disable hardening, set the SECURE flag to false.