Details
-
Bug
-
Status: Patch Available
-
Minor
-
Resolution: Unresolved
-
1.6.0
-
None
-
None
Description
Knox generates a certificate if it's not given anything explicitly. But after a year the certificate expires and Knox fails to start.
The issue is easy to fix and it's quite old:
https://pvtl.force.com/s/article/48-Knox-gateway-SSL-certificate-expired?language=en_US
https://www.ibm.com/support/pages/how-renew-knox-gateway-ssl-certificate-after-it-expires
But it's better to generate a certificate for a longer period, e.g. 100 years.