Hi Praveen Srinivasan,
The image you have shared still has 1 year validity. I wonder why `OpenDJ` showing 1 year validity, it should have 20 years. is it fresh installation?
Anyway to upgrade:
- Backup your existing `idp-signing.crt` and `idp-signing.key` from Gluu-Server-container:/etc/certs location
- Generate long term `idp-signing.crt` and `idp-signing.key`. We are using self signed cert and key. Command: `openssl req -x509 -nodes -days 365 -newkey rsa:2048 -keyout idp-signing.key -out idp-signing.crt`
- Put these newly generated cert and key inside /etc/certs/ location. Make sure permission is `root:gluu`
- Stop / Start Gluu-Server container
Similarly you can renew certificate for `idp-encryption`. Just remember to keep backup of `/etc/certs`.
Thanks & Regards ~ Shakil