zackramjan/compare_ssl.sh

Last active January 3, 2021 20:53

Star (0) You must be signed in to star a gist
Fork (0) You must be signed in to fork a gist

Learn more about clone URLs
Clone this repository at <script src="https://gist.github.com/zackramjan/0b1e45cab4d9c0d828fa0393265010a7.js"></script>
Save zackramjan/0b1e45cab4d9c0d828fa0393265010a7 to your computer and use it in GitHub Desktop.

Download ZIP

This will compare an openssl certificate from a server to the one stored in cacerts in the local java keystore. If they differ you have have an issue

Raw

compare_ssl.sh

echo Q | openssl s_client -showcerts  -connect vaidc02.vai.org:636 |  openssl x509 -fingerprint -noout -in /dev/stdin  |grep SHA1 ;  keytool -list -v -storepass changeit -keystore /etc/pki/ca-trust/extracted/java/cacerts  -alias vaidc02 |grep SHA1

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment