Tue, 20 Jun 2017

3:52 PM - Installing SSL certs from Amazon AWS RDS instances in java

Having problems connecting Java apps to amazon RDS instances? Try installing the CAcerts from amazon as follows. These instructions cover freebsd and Mac OS X.

# (use curl or wget on mac)
fetch http://s3.amazonaws.com/rds-downloads/rds-combined-ca-bundle.pem

# create individual files from the bundle for loading into java
split -p "-----BEGIN CERTIFICATE-----" rds-combined-ca-bundle.pem individual-

# load them into your cacerts file in freebsd
find . -iname 'individual*' -exec keytool -import -file {} -alias {} -storepass changeit -keystore /usr/local/openjdk8/jre/lib/security/cacerts \;

# mac version, tweak for your JDK path
find . -iname 'individual*' -exec keytool -import -file {} -alias {} -storepass changeit -keystore /Library/Java/JavaVirtualMachines/jdk1.8.0_25.jdk/Contents/Home/jre/lib/security/cacerts \;

tags: ssl rds keytool aws java