1

I'm using Sonatype Nexus 2.5.0-04. I'm trying to add a SSL certificates in the user interface, as described in the documentation here: http://books.sonatype.com/nexus-book/reference/ssl-sect-client-cert.html

The documentation says "The administration interface for SSL certificates as visible in Figure 23.1, 'SSL Certificates Administration' and can be accessed by selecting SSL Certificates in the right hand Administration menu."

Where is the "right hand Administration menu"? I've looked everywhere. I can't find a link for SSL certificates in the GUI anywhere. I thought perhaps this might be a feature available only in the professional version, but there is no mention of that in the documentation on the differences between the two versions.

4

2 回答 2

2

这是一个仅在 Nexus Professional 中可用的功能,它应该是左侧导航。我将在书中解决这个问题。

更新:文档现已修复。

于 2013-06-12T19:24:58.583 回答
0

我想对使用 SSL 和自签名证书配置 Nexus 前端表示赞赏,因为当您使用 keytool 生成 de keystore.jks 文件时,如https://support.sonatype.com/hc/en-中所示us/articles/213465768-SSL-Certificate-Guide?_ga=2.171695904.1899216110.1638870535-818117565.1624006959

keytool -genkeypair -keystore keystore.jks -storepass password -alias example.com \
-keyalg RSA -keysize 2048 -validity 5000 -keypass password \
-dname 'CN=*.example.com, OU=Sonatype, O=Sonatype, L=Unspecified, ST=Unspecified,  C=US' \
-ext SAN=DNS:nexus.example.com,DNS:clm.example.com,DNS:repo.example.com,DNS:www.example.com'

您会收到Invalid keystore format错误,因为 keytool 的默认TrustStoreTypePKCS12。我不得不将它强制到 JKS 才能使用-storeType选项启动 Nexus。

keytool -genkeypair -keystore keystore.jks -storeType JKS -storepass password -alias example.com \
-keyalg RSA -keysize 2048 -validity 5000 -keypass password \
-dname 'CN=*.example.com, OU=Sonatype, O=Sonatype, L=Unspecified, ST=Unspecified,  C=US' \
-ext SAN=DNS:nexus.example.com,DNS:clm.example.com,DNS:repo.example.com,DNS:www.example.com'

我不知道您是否可以在文档中更正它,或者至少对此表示赞赏。

我在 Nexus 的3.30.1.01版本中发现了这个问题。

于 2021-12-07T12:25:54.550 回答