This code is there but it does not show on solr running cammnd
On Wed, 9 Dec 2020 at 23:28, rkrish84 wrote:
> Commented out the solr_ssl_client_key_store related code section in solr.sh
> file to resolve the issue and enable ssl.
>
>
>
> --
> Sent from: https://lucene.472066.n3.nabble.com/Solr-U
Commented out the solr_ssl_client_key_store related code section in solr.sh
file to resolve the issue and enable ssl.
--
Sent from: https://lucene.472066.n3.nabble.com/Solr-User-f472068.html
You need to remove the references from bin/solr or bin/solr.cmd to
SOLR_SSL_CLIENT_KEY_STORE and "-Djavax.net.ssl.keyStore". This is different
from solr.in.sh.
The way the bin/solr script is written it is falling back to whatever is
provided as SOLR_SSL_KEY_STORE for the client keystore which is c
From the /bin directory I did grep for SOLR_SSL_CLIENT_KEY_STORE ,
this is what I see . But somehow the option option -Djavax.net.ssl.keyStore is
added
grep SOLR_SSL_CLIENT_KEY_STORE *
grep: init.d: Is a directory
solr: if [ -n "$SOLR_SSL_CLIENT_KEY_STORE" ]; then
solr:SOLR_SSL_OPTS+=" -Dja
Thank you for your reply. I looked at solr.in.sh I see that
SOLR_SSL_CLIENT_KEY_STORE is already commented out by default. But you are
right I looked at the running solr, I see the option -Djavax.net.ssl.keyStore
pointing to solr-ssl.keystore.p12 , not sure how it is getting that value. Let
Hmmm so I looked closer - it looks like a side effect of the default
passthrough of the keystore being passed to the client keystore.
https://github.com/apache/lucene-solr/blob/master/solr/bin/solr#L229
Can you remove or commout the entire SOLR_SSL_CLIENT_KEY_STORE section from
bin/solr or bin/so
Thank you so much for the response. Below are the configs I have in solr.in.sh
and I followed https://lucene.apache.org/solr/guide/8_5/enabling-ssl.html
documentation
# Enables HTTPS. It is implicitly true if you set SOLR_SSL_KEY_STORE. Use this
config
# to enable https module with custom jet
>
> In local with just certificate and one domain name the SSL communication
> worked. With multiple DNS and 2 certificates SSL fails with below exception.
>
A client keystore by definition can only have a single certificate. A
server keystore can have multiple certificates. The reason being is t
I looked at the patch mentioned in the JIRA
https://issues.apache.org/jira/browse/SOLR-14105 reporting the below issue. I
looked at the solr 8.5.1 code base , I see the patch is applied. But still
seeing the same exception with different stack trace. The initial excsption
stacktrace was at
