Docs Menu
Docs Home
/
MongoDB Ops Manager
/
Security
/
Secure with Authentication

Add CA Certificate to Ops Manager Java Trust Store

On this page

  • Prerequisites
  • Add CA Cert to Ops Manager Java Truststore

In order to connect a webhook to Ops Manager with HTTPS, you'll need to import your CA certificate into the Ops Manager Java Trust Store.

Prerequisites

  • Have an accessible Ops Manager deployment

Add CA Cert to Ops Manager Java Truststore

1

Add the CA certificate of the webhook into the Ops Manager HTTP server.

After adding the absolute path to your webhook trust store to the following command, run it to add your CA certificate to the Ops Manager Java trust store.

sudo /opt/mongodb/mms/jdk/bin/keytool -noprompt -storepass changeit -import -trustcacerts -alias Webhook_CA -file <AbsolutePathofWebhookTrustStore> -keystore /opt/mongodb/mms/jdk/lib/security/cacerts
2

Confirm that the webhook CA certificate has been added.

Run the following command to confirm that the CA certificate has been added successfully.

sudo /opt/mongodb/mms/jdk/bin/keytool -noprompt -storepass changeit -list -v -keystore /opt/mongodb/mms/jdk/lib/security/cacerts | grep -i Webhook_CA
3

Restart Ops Manager.

Restart the Ops Manager server in order for the certificates to reload and the change to take effect.

sudo systemctl restart mongodb-mms
4

Test an HTTPS request to Ops Manager to confirm connectivity.

After adding your webhook URL to the following command, run it to test your webhook's HTTPS connectivity with Ops Manager.

sudo curl -vvvv -cacert /opt/mongodb/mms/jdk/lib/security/cacerts <WebhookURL>

Back

Custom Roles

Next

Clear Settings