相关版本:此信息属于Artifactory版本6和7

为了将证书更新到Artifactory上的Java Keystore，您需要执行以下步骤

Artifactory版本6:

步骤1:使用需要导入到Java密钥库的证书文件创建一个configmap

Kubectl创建configmap all-ca——from-file=ca.crt
步骤2:在值中使用下面的configmap配置。yaml文件used for installing and upgrading Artifactory using helm
例子:artifactory:
customVolumeMounts: |
—name: all-ca
mountPath:“/ usr /地方/共享/ ca证书/ ca.crt”
子路径:ca.crt
customVolumes: |
—name: all-ca
configMap:
名称:所有ca
preStartCommand: "/java/jdk-11.0.7+10/bin/keytool -importcert -keystore /java/jdk-11.0.7+10/lib/security/cacerts -storepass changeit -file /usr/local/share/ca-certificates/ca. keystore /bin/keytool -importcert -keystore /java/jdk-11.0.7+10/lib/security/cacerts -storepass changeit -filecrt -alias YourAlias -noprompt"
请注意:你可能必须使用前面提到的preStartCommand中的keytool位置和cacerts文件位置的确切路径

步骤3:使用更新后的值执行Helm升级。yaml文件

Artifactory版本7:

步骤1:为Artifactory version 6创建一个类似于上面提到的示例的configmapKubectl创建configmap trusted-certs——from-file=ca.crt

步骤2:从7开始。xversion, the custom certificates that need to be imported to Java Keystore can be placed in the trusted directory available under the "JFROG_HOME美元/ artifactory / etc /安全/键/信任＂

步骤3:使用下面提到的configmap配置并执行Hem升级
例子:

artifactory:
customVolumes: |
—名称:trusted-certs
configMap:
名称:trusted-certs
customVolumeMounts: |
—名称:trusted-certs
mountPath: /var/opt/jfrog/artifactory / etc /安全/键/信任