Hyland Connect

loftux · ‎08-29-2011

I've managed for test purposes set up the Alfresco Solr integration for 4.0.a, using ssl authentication. I've set it up with alfresco included certificates found in alfresco/keystore.
For what I can tell, indexing is taking place and search return expected results.

What is not working is accessing https://localhost:8443/solr/admin.
Solr is in web.xml by default set up to require certificate authentication

<login-config>
  <auth-method>CLIENT-CERT</auth-method>
  <realm-name>Solr</realm-name>
</login-config>‍‍‍‍

So I need to get hold of a client certificate, and import this to my browser? I just assume that is what I need to do. The error I get is

2011-aug-29 13:20:05 org.apache.coyote.http11.Http11Processor action
VARNING: Exception getting SSL attributes
javax.net.ssl.SSLProtocolException: handshake alert: no_certificate‍‍‍

and then unable to access the solr admin gui.
I tried with

keytool -export –rfc -alias alfresco.ca -file ssl.truststore.crt -keystore ssl.truststore -storepass <password> -storetype JCEKS‍

and with the other keystores. Imported exported crt into browser but that didn't help, and I must admit I not sure what I'm doing here :roll:

andy · ‎09-05-2011

Hi

The detail on how to generate your own certificates will appear on the wiki sometime soon.

There will be a suitable certificate for web browser access in the next community drop/HEAD build.

See HEAD\root\projects\repository\config\alfresco\keystore\browser.p12

Andy

alexist · ‎02-13-2012

Well, the documentation "Generating New SSL Keys " is realy, realy not clear.

I think most people will put the default ssl configuration packaged with the distribution, which will introduce security holes

Hyland Connect

Solr and admin authentication