from file system artifacts.
Follows a description of the way to generate the artifacts using openssl.
Generate server private key:
openssl genrsa -out private.key.rsa
openssl pkcs8 -in private.key -topk8 -out private.key.pk8
In the pkcs8
command, a password must be provided. Take note of it; in our example it will be "1234".
Generate a certificate sign request. Verify that the CNAME (Common Name) matches your FQDN server name.
openssl req -new -sha256 -key private.key.pk8 -out request.csr
is to be sent to AMERICATI, which in turn responds with a signed certificate
file for the host (something like host.crt
The 3S root certificate is provided with 3S infrastructure in a file named ca-certificate.pem.txt
With the names of this example, the
can be created with:
S3SecurityContext securityContext = S3SecurityContextBuilder.build(
new File("private.key.pk8"), "1234"