Use the following procedure to register CA certificates to Resource Orchestrator.

1. Copy the keystore of Resource Orchestrator.

   [Windows Manager]

   • Files to Copy

     Installation_folder\SVROR\Manager\runtime\jre6\lib\security\cacerts

   • Copy Destination

     Installation_folder\SVROR\Manager\runtime\jre6\lib\security\cacerts.org

     
     

   [Linux Manager]

   • Files to Copy

     /opt/FJSVrcvmr/runtime/jre6/lib/security/cacerts

   • Copy Destination

     /opt/FJSVrcvmr/runtime/jre6/lib/security/cacerts.org

     
     

   Note

   Ensure that the keystore of Resource Orchestrator is copied, as it will be necessary when changing the directory service.

2. Copy the CA Certificate (keystore) of ServerView Operations Manager to the keystore of Resource Orchestrator.

   The CA certificate (keystore) of ServerView Operations Manager is stored in the following location:

   [Windows]
   ServerView Suite_Installation_folder\jboss\server\serverview\conf\pki\cacerts

   [Linux]
   /opt/fujitsu/ServerViewSuite/jboss/server/serverview/conf/pki/cacerts

   Example

   [Windows Manager]

   >C:\Fujitsu\ROR\SVROR\Manager\runtime\jre6\bin\keytool.exe -importkeystore -srckeystore "C:\Program Files\Fujitsu\ServerView Suite \jboss\server\serverview\conf\pki\cacerts" -destkeystore "C:\Fujitsu\ROR\SVROR\Manager\runtime\jre6\lib\security\cacerts"<RETURN>

   [Linux Manager]

   # /opt/FJSVrcvmr/runtime/jre6/bin/keytool -importkeystore -srckeystore /opt/fujitsu/ServerViewSuite/jboss/server/serverview/conf/pki/cacerts -destkeystore /opt/FJSVrcvmr/runtime/jre6/lib/security/cacerts <RETURN>

   After executing the command, enter the password.
   The password for the keystore of Resource Orchestrator is set to "changeit" by default.

3. The following messages will be displayed when import is successfully completed.

   Check the "Another name" section.

   Enter destination keystore password: changeit Enter source keystore password: changeit Entry for Another name successfully imported. Import command completed: 1 entries successfully imported. 0 entries failed or cancelled.

4. Execute the keytool command, and check if the CA certificate has been correctly imported.

   For the -alias option, specify the "another name" checked in 3.

   Example

   [Windows Manager]

   >C:\Fujitsu\ROR\SVROR\Manager\runtime\jre6\bin\keytool.exe -list -alias Another_name -keystore " C:\Fujitsu\ROR\SVROR\Manager\runtime\jre6\lib\security\cacerts" <RETURN> Enter keystore password: changeit svs_cms, 2012/04/10, trustedCertEntry, Certificate fingerprints (MD5): 02:68:56:4C:33:AF:55:34:87:CA:51:FD:BF:66:47:06

   [Linux Manager]

   # /opt/FJSVrcvmr/runtime/jre6/bin/keytool -list -alias Another_name -keystore /opt/FJSVrcvmr/runtime/jre6/lib/security/cacerts <RETURN> Enter keystore password: changeit svs_cms, 2012/04/10, trustedCertEntry, Certificate fingerprints (MD5): 02:68:56:4C:33:AF:55:34:87:CA:51:FD:BF:66:47:06