Close popover

Table of Contents

Creating Java keystores and truststores for Cassandra encryption

Version:

Enable internal and external Cassandra encryption by creating Java keystores and truststores along with SSL certificates.

  1. Create the keystore.shared file by running the following command: keytool -genkey -keyalg RSA -alias shared -validity 36500 -keystore keystore.shared -storepass cassandra -keypass cassandra -dname "CN=None, OU=None, O=None, L=None, C=None" where cassandra is the password the certificate.

  2. Export the SSL certificate from the keystore.shared file to the shared.cer file by running the following command: keytool -export -alias shared -file shared.cer -keystore keystore.shared -storepass cassandra where cassandra is the password the certificate.

  3. Create the truststore.shared file and import the SSL certificate to that file by running the following command: keytool -importcert -v -trustcacerts -noprompt -alias shared -file shared.cer -keystore truststore.shared -storepass cassandra where cassandra is the password the certificate.

Have a question? Get answers now.

Visit the Collaboration Center to ask questions, engage in discussions, share ideas, and help others.