Expired Certificate

By: Mike Graves user 07 Jan 2022 at 10:48 a.m. CST

2 Responses
Mike Graves gravatar
Started receiving the error below in the oxauth.log, what is the proper procedure to deal with this? I do see a support case for this but it is from version3.X 2022-01-07 11:50:24,972 WARN [qtp536765369-15] [org.gluu.oxauth.model.crypto.AbstractCryptoProvider] (AbstractCryptoProvider.java:184) - WARNING! Key will expire soon, alias: 09db75d1-9e48-46da-b69a-cb29b2d181dd_sig_rs256 Expires On: 2022-01-07 15:10:29 Today's Date: 2022-01-07 11:50:24
Gluu 4.3 Ubuntu 20.04
closed

Answers

By Mobarak Hosen Shakil staff 08 Jan 2022 at 12:38 a.m. CST

Copy
Mobarak Hosen Shakil gravatar
Hi Mike, Please read the latest documentations from this [link](https://gluu.org/docs/gluu-server/4.3/admin-guide/certificate/) Regards ~ Shakil

By Mike Graves user 10 Jan 2022 at 7:01 a.m. CST

Copy
Mike Graves gravatar
I took the system down to snapshot it prior to making any configuration changes. Once it came back up my OIDC clients started working again and now the oxauth.log is stating that the same key with a different alias is about to expire (also states it will be regenerated). Looking at the certs in the UI (configuration -> certificates) none of these are set to expire until the end of this year at the earliest? I went through the documentation in the link you sent and it is not very clear on what keys need to be regenerated and the parameters that should be used to do so.

Post an answer