Renewing SSL certificate

Consider the following scenario: You have already implemented the SSL Certificate into SynaMan. However, the certificate is about to expire soon. You have already contacted a certificate authority, such as GoDaddy, to renew your certificate. You have received the new certificate from them and you would like to integrate it into SynaMan again.

Note: This method applies for SynaMan as well as Syncrify.

Using keytool, you can convert the certificate into a keystore file and insert it into SynaMan to apply the new certificate.

Following is a list of step-by-step instructions.

Step 1 - Preparation

Copy necessary files into a temporary folder. You will need two files:

  • Your existing *.keystore file, which is your existing public/private key as well as signed certificate that is about to expire. This is usually located in $INSTALL_DIR/htdocs/sslCert
  • The downloaded certificate file from your CA
Step 2 - Merging

Open a command prompt and change the directory to the temporary folder where the certificate and original *.keystore files are located. Next, enter in the following command:

keytool -import -trustcacerts -alias synaman -file yourCertificate.crt -keystore synaman.keystore

The value for alias varies on what your keystore file contains. To view the contents of your keystore, use the following command:

keytool -list -keystore storeName (where storeName is the name of your keystore file)

Ensure to use the actual file name for yourCertificate.crt

Next, keytool will prompt you for your certificate password. Please enter in your password.

Once done, you will get a new synaman.keystore file.

Step 3 - Move File

Copy the generated *.keystore file to $INSTALL_DIR/htdocs/sslCert folder.

On Windows, this path is either C:\SynaMan\htdocs\sslCert or C:\Program Files\SynaMan\htdocs\sslCert
On Linux, this path is typically set to /opt/SynaMan/htdocs/sslCert

Finally, restart SynaMan

Step 4 - Verification

After restarting Syncrify/SynaMan, try connecting to the web interface using a browser. Click the lock icon in the address bar to verify the expiration date of your new certificate.

Note: If you get the following error:
keytool is not recognized as an internal or external command, operable program or batch file.
you will need to set keytool in your system PATH.


Social Media

Powered by