Caller Properties Initialized cat SSO cadi_keyfile=/root/.aaf/keyfile aaf_id=deployer@people.osaaf.org aaf_password=enc:lsiGyrpRUGe8t5IDyWE6QEn_0bz7hyXitQMo5ZB1AYl aaf_locate_url=https://-locator.:8095 aaf_url_cm=https://AAF_LOCATE_URL/%CNS.%NS.cm:2.1 aaf_url=https://AAF_LOCATE_URL/%CNS.%NS.service:2.1 cadi_truststore=/root/.aaf/truststoreONAPall.jks cadi_truststore_password=changeit cadi_latitude= cadi_longitude= hostname=holmes-rule-mgmt aaf_locator_fqdn=holmes-rule-mgmt aaf_locator_container=oom aaf_locator_container_ns=onap aaf_locate_url=https://aaf-locate.onap:8095 aaf_locator_app_ns=org.osaaf.aaf cadi_longitude=0.0 cadi_latitude=0.0 aaf_locator_public_fqdn=holmes-rule-mgmt.onap.org /opt/app/osaaf/local exists Existing files in /opt/app/osaaf/local total 3168 -rw-r--r-- 1 root root 16 Jun 16 00:00 VERSION -rw-r--r-- 1 root root 3058405 Jun 16 00:00 aaf-cadi-aaf-2.1.20-full.jar -rwxr-xr-x 1 root root 49 Jun 16 00:00 agent -rwxr-xr-x 1 root root 54 Jun 16 00:00 cadi -rw-r--r-- 1 root root 0 Jun 16 00:00 org.onap.holmes-rule-mgmt -rw-r--r-- 1 root root 470 Jun 16 00:01 org.onap.holmes-rule-mgmt.cred.props -rw-r--r-- 1 root root 1103 Jun 16 00:00 org.onap.holmes-rule-mgmt.cred.props.13313771102737758388.backup -rw-r--r-- 1 root root 556 Jun 15 23:56 org.onap.holmes-rule-mgmt.cred.props.7879169236864899098.backup -rw-r--r-- 1 root root 1624 Jun 16 00:00 org.onap.holmes-rule-mgmt.crt -r-------- 1 root root 1705 Jun 16 00:00 org.onap.holmes-rule-mgmt.key -r-------- 1 root root 2074 Jun 15 23:56 org.onap.holmes-rule-mgmt.keyfile -rw-r--r-- 1 root root 282 Jun 16 00:01 org.onap.holmes-rule-mgmt.location.props -rw-r--r-- 1 root root 282 Jun 15 23:56 org.onap.holmes-rule-mgmt.location.props.2751534063586912570.backup -rw-r--r-- 1 root root 4288 Jun 16 00:00 org.onap.holmes-rule-mgmt.p12 -rw-r--r-- 1 root root 1211 Jun 16 00:01 org.onap.holmes-rule-mgmt.props -rw-r--r-- 1 root root 1211 Jun 15 23:56 org.onap.holmes-rule-mgmt.props.3499560504157798792.backup -rw-r--r-- 1 root root 1413 Jun 16 00:00 org.onap.holmes-rule-mgmt.trust.jks -rw-r--r-- 1 root root 117990 Jun 15 23:56 truststoreONAPall.jks Namespace is org.onap.holmes-rule-mgmt #### Create Configuration files 2021-06-16T00:01:44.809+0000 INIT [cadi] cadi_keyfile points to /opt/app/osaaf/local/org.onap.holmes-rule-mgmt.keyfile 2021-06-16T00:01:44.828+0000 INIT [cadi] https.protocols set by cadi_protocols in CADI Properties 2021-06-16T00:01:44.828+0000 INIT [cadi] jdk.tls.client.protocols set from Default Protocols Writing to /opt/app/osaaf/local 2021-06-16T00:01:45.106+0000 INIT [cadi] RegistrationProperty: default_container='oom' 2021-06-16T00:01:45.106+0000 INIT [cadi] RegistrationProperty: public_port='null' 2021-06-16T00:01:45.112+0000 INIT [cadi] RegistrationProperty: hostname='onap-holmes-rule-mgmt-7f7cddb7b7-7dxzn' 2021-06-16T00:01:45.113+0000 INIT [cadi] RegistrationProperty: public_fqdn='holmes-rule-mgmt.onap.org' 2021-06-16T00:01:45.113+0000 INIT [cadi] RegistrationProperty: default_name='%NS.%N' 2021-06-16T00:01:45.113+0000 INIT [cadi] RegistrationProperty: latitude='0.0' 2021-06-16T00:01:45.113+0000 INIT [cadi] RegistrationProperty: longitude='0.0' 2021-06-16T00:01:45.114+0000 INIT [cadi] RegistrationProperty: public_hostname(overloaded by )='holmes-rule-mgmt.onap.org' 2021-06-16T00:01:45.114+0000 INIT [cadi] RegistrationProperty: default_fqdn='holmes-rule-mgmt' 2021-06-16T00:01:45.114+0000 INIT [cadi] RegistrationProperty: default_container_ns='onap' 2021-06-16T00:01:45.114+0000 DEBUG [cadi] RegistrationReplacement from Agent:loadURLs, source: https://aaf-locate.onap:8095, dot_le: .oom, value: https://aaf-locate.onap:8095 2021-06-16T00:01:45.115+0000 DEBUG [cadi] RegistrationReplacement from Agent:loadURLs, source: https://AAF_LOCATE_URL/%CNS.%AAF_NS.service:2.1, dot_le: .oom, value: https://aaf-locate.onap:8095/locate/onap.org.osaaf.aaf.service:2.1 2021-06-16T00:01:45.115+0000 DEBUG [cadi] RegistrationReplacement from Agent:loadURLs, source: https://AAF_LOCATE_URL/%CNS.%AAF_NS.oauth:2.1, dot_le: .oom, value: https://aaf-locate.onap:8095/locate/onap.org.osaaf.aaf.oauth:2.1 2021-06-16T00:01:45.115+0000 DEBUG [cadi] RegistrationReplacement from Agent:loadURLs, source: https://AAF_LOCATE_URL/%CNS.%AAF_NS.cm:2.1, dot_le: .oom, value: https://aaf-locate.onap:8095/locate/onap.org.osaaf.aaf.cm:2.1 2021-06-16T00:01:45.115+0000 DEBUG [cadi] RegistrationReplacement from Agent:loadURLs, source: https://AAF_LOCATE_URL/%CNS.%AAF_NS.gui:2.1, dot_le: .oom, value: https://aaf-locate.onap:8095/locate/onap.org.osaaf.aaf.gui:2.1 2021-06-16T00:01:45.116+0000 DEBUG [cadi] RegistrationReplacement from Agent:loadURLs, source: https://AAF_LOCATE_URL/%CNS.%AAF_NS.fs:2.1, dot_le: .oom, value: https://aaf-locate.onap:8095/locate/onap.org.osaaf.aaf.fs:2.1 2021-06-16T00:01:45.116+0000 DEBUG [cadi] RegistrationReplacement from Agent:loadURLs, source: https://aaf-locate.onap:8095/locate/onap.org.osaaf.aaf.hello:2.1, dot_le: .oom, value: https://aaf-locate.onap:8095/locate/onap.org.osaaf.aaf.hello:2.1 2021-06-16T00:01:45.116+0000 DEBUG [cadi] RegistrationReplacement from Agent:loadURLs, source: https://AAF_LOCATE_URL/%CNS.%AAF_NS.token:2.1/token, dot_le: .oom, value: https://aaf-locate.onap:8095/locate/onap.org.osaaf.aaf.token:2.1/token 2021-06-16T00:01:45.116+0000 DEBUG [cadi] RegistrationReplacement from Agent:loadURLs, source: https://AAF_LOCATE_URL/%CNS.%AAF_NS.introspect:2.1/introspect, dot_le: .oom, value: https://aaf-locate.onap:8095/locate/onap.org.osaaf.aaf.introspect:2.1/introspect Passed in Truststore is /opt/app/osaaf/local/org.onap.holmes-rule-mgmt.trust.jks New Truststore is /opt/app/osaaf/local/org.onap.holmes-rule-mgmt.trust.jks Reading /opt/app/osaaf/local/./org.onap.holmes-rule-mgmt.props Backing up /opt/app/osaaf/local/org.onap.holmes-rule-mgmt.location.props Backing up /opt/app/osaaf/local/org.onap.holmes-rule-mgmt.props Backing up /opt/app/osaaf/local/org.onap.holmes-rule-mgmt.cred.props 2021-06-16T00:01:45.162+0000: Trans Info REMOTE Get Configuration 56.976086ms ############################################################ # Properties Generated by AT&T Certificate Manager # by root # on 2021-06-16T00:01:45.159+0000 # @copyright 2019, AT&T ############################################################ aaf_env=DEV aaf_id=holmes-rule-mgmt@holmes-rule-mgmt.onap.org aaf_locate_url=https://aaf-locate.onap:8095 aaf_locator_app_ns=org.osaaf.aaf aaf_locator_container=oom aaf_locator_container_ns=onap aaf_locator_fqdn=holmes-rule-mgmt aaf_locator_public_fqdn=holmes-rule-mgmt.onap.org aaf_oauth2_introspect_url=https://AAF_LOCATE_URL/%CNS.%AAF_NS.introspect:2.1/introspect aaf_oauth2_token_url=https://AAF_LOCATE_URL/%CNS.%AAF_NS.token:2.1/token aaf_url=https://AAF_LOCATE_URL/%CNS.%AAF_NS.service:2.1 aaf_url_cm=https://AAF_LOCATE_URL/%CNS.%AAF_NS.cm:2.1 aaf_url_fs=https://AAF_LOCATE_URL/%CNS.%AAF_NS.fs:2.1 aaf_url_gui=https://AAF_LOCATE_URL/%CNS.%AAF_NS.gui:2.1 aaf_url_hello=https://aaf-locate.onap:8095/locate/onap.org.osaaf.aaf.hello:2.1 aaf_url_oauth=https://AAF_LOCATE_URL/%CNS.%AAF_NS.oauth:2.1 cadi_prop_files=/opt/app/osaaf/local/org.onap.holmes-rule-mgmt.location.props:/opt/app/osaaf/local/org.onap.holmes-rule-mgmt.cred.props cadi_protocols=TLSv1.1,TLSv1.2 #### Certificate Authorization Artifact 2021-06-16T00:01:45.373+0000 INIT [cadi] cadi_keyfile points to /opt/app/osaaf/local/org.onap.holmes-rule-mgmt.keyfile 2021-06-16T00:01:45.393+0000 INIT [cadi] https.protocols set by cadi_protocols in CADI Properties 2021-06-16T00:01:45.393+0000 INIT [cadi] jdk.tls.client.protocols set from Default Protocols AppID: holmes-rule-mgmt@holmes-rule-mgmt.onap.org Sponsor: mmanager@osaaf.org Machine: holmes-rule-mgmt CA: local Types: file,pkcs12 Namespace: org.onap.holmes-rule-mgmt Directory: /opt/app/osaaf/local O/S User: root Renew Days: 30 Notification mailto: 2021-06-16T00:01:48.016+0000: Trans Info Read Artifact 2049.419ms #### Place Certificates (by deployer) 2021-06-16T00:01:48.229+0000 INIT [cadi] cadi_keyfile points to /opt/app/osaaf/local/org.onap.holmes-rule-mgmt.keyfile 2021-06-16T00:01:48.248+0000 INIT [cadi] https.protocols set by cadi_protocols in CADI Properties 2021-06-16T00:01:48.248+0000 INIT [cadi] jdk.tls.client.protocols set from Default Protocols Writing to /opt/app/osaaf/local Writing file /opt/app/osaaf/local/org.onap.holmes-rule-mgmt.crt Writing file /opt/app/osaaf/local/org.onap.holmes-rule-mgmt.key Writing file /opt/app/osaaf/local/org.onap.holmes-rule-mgmt.p12 Writing file /opt/app/osaaf/local/org.onap.holmes-rule-mgmt.trust.jks Backing up /opt/app/osaaf/local/org.onap.holmes-rule-mgmt.cred.props 2021-06-16T00:01:56.081+0000: Trans Info REMOTE Place Artifact 7280.3076ms Reconstitute Private Key 0.781596ms Obtained Certificates #### Validate Configuration and Certificate with live call 2021-06-16T00:01:56.304+0000 INIT [cadi] cadi_keyfile points to /opt/app/osaaf/local/org.onap.holmes-rule-mgmt.keyfile 2021-06-16T00:01:56.323+0000 INIT [cadi] https.protocols set by cadi_protocols in CADI Properties 2021-06-16T00:01:56.323+0000 INIT [cadi] jdk.tls.client.protocols set from Default Protocols Validating Configuration... 2021-06-16T00:01:56.938+0000 INIT [cadi] X509 Chain 0) Subject: C=US, O=ONAP, OU=OSAAF, OU=holmes-rule-mgmt@holmes-rule-mgmt.onap.org:DEV, CN=holmes-rule-mgmt Issuer : CN=intermediateCA_9, OU=OSAAF, O=ONAP, C=US Expires: Thu Jun 16 00:01:55 GMT 2022 1) Subject: CN=intermediateCA_9, OU=OSAAF, O=ONAP, C=US Issuer : C=US, O=ONAP, OU=OSAAF Expires: Thu Aug 17 18:51:37 GMT 2023 2021-06-16T00:01:56.942+0000 INIT [cadi] https.protocols loaded from System Properties 2021-06-16T00:01:56.942+0000 INIT [cadi] jdk.tls.client.protocols loaded from System Properties 2021-06-16T00:01:56.984+0000 INIT [cadi] RegistrationProperty: default_container='oom' 2021-06-16T00:01:56.984+0000 INIT [cadi] RegistrationProperty: public_port='null' 2021-06-16T00:01:56.991+0000 INIT [cadi] RegistrationProperty: hostname='onap-holmes-rule-mgmt-7f7cddb7b7-7dxzn' 2021-06-16T00:01:56.991+0000 INIT [cadi] RegistrationProperty: public_fqdn='holmes-rule-mgmt.onap.org' 2021-06-16T00:01:56.991+0000 INIT [cadi] RegistrationProperty: default_name='%NS.%N' 2021-06-16T00:01:56.991+0000 INIT [cadi] RegistrationProperty: latitude='0.0' 2021-06-16T00:01:56.992+0000 INIT [cadi] RegistrationProperty: longitude='0.0' 2021-06-16T00:01:56.992+0000 INIT [cadi] RegistrationProperty: public_hostname(overloaded by )='holmes-rule-mgmt.onap.org' 2021-06-16T00:01:56.992+0000 INIT [cadi] RegistrationProperty: default_fqdn='holmes-rule-mgmt' 2021-06-16T00:01:56.992+0000 INIT [cadi] RegistrationProperty: default_container_ns='onap' 2021-06-16T00:01:56.992+0000 DEBUG [cadi] RegistrationReplacement from AAFCon, source: https://AAF_LOCATE_URL/%CNS.%AAF_NS.service:2.1, dot_le: .oom, value: https://aaf-locate.onap:8095/locate/onap.org.osaaf.aaf.service:2.1 2021-06-16T00:01:56.992+0000 INFO [cadi] AAFCon has URL of https://aaf-locate.onap:8095/locate/onap.org.osaaf.aaf.service:2.1 2021-06-16T00:01:57.054+0000 DEBUG [cadi] Configured AbsAAFLocator not found"LocatorCreator is not set"Continuing Locator creation 2021-06-16T00:01:57.054+0000 DEBUG [cadi] RegistrationReplacement from Config.loadLocator, source: https://AAF_LOCATE_URL/%CNS.%AAF_NS.service:2.1, dot_le: .oom, value: https://aaf-locate.onap:8095/locate/onap.org.osaaf.aaf.service:2.1 2021-06-16T00:01:57.054+0000 INFO [cadi] loadLocator URL is https://aaf-locate.onap:8095/locate/onap.org.osaaf.aaf.service:2.1 2021-06-16T00:01:57.056+0000 DEBUG [cadi] RegistrationReplacement from AAFLocator, source: https://AAF_LOCATE_URL, dot_le: .oom, value: https://aaf-locate.onap:8095 2021-06-16T00:01:57.056+0000 INFO [cadi] AbsAAFLocator AAF URI is https://aaf-locate.onap:8095/locate 2021-06-16T00:01:57.057+0000 DEBUG [cadi] RegistrationReplacement from AAFLocator, source: onap.org.osaaf.aaf.service:2.1, dot_le: .oom, value: onap.org.osaaf.aaf.service:2.1 2021-06-16T00:01:57.057+0000 INFO [cadi] AbsAAFLocator name is https://aaf-locate.onap:8095/locate 2021-06-16T00:01:57.069+0000 DEBUG [cadi] Root URI: https://aaf-locate.onap:8095/locate/onap.org.osaaf.aaf.service:2.1 2021-06-16T00:01:57.075+0000 INFO [cadi] AAFLocator enabled using https://aaf-locate.onap:8095 Success connecting to https://aaf-service.onap:8100 Permissions for holmes-rule-mgmt@holmes-rule-mgmt.onap.org org.onap.holmes-rule-mgmt.access|*|* org.onap.holmes-rule-mgmt.certman|local|request,ignoreIPs,showpass Initialization complete *** retrieving passwords for certificates *** password retrieval succeeded *** changing them into shell safe ones *** set key password as same password as keystore password keytool error: java.lang.UnsupportedOperationException: -keypasswd commands not supported if -storetype is PKCS12 *** save the generated passwords *** change ownership of certificates to targeted user