Recreating self-signed SSL certificates on a Matillion ETL instance

Overview

If you have encountered problems when adding your own certificates to a Matillion ETL instance, you may wish to recreate the self-signed certificates that come "out of the box" with a new Matillion ETL instance. Recreating a self-signed certificate will allow you to add your own certificates by clicking Admin → SSL.

---

How to recreate a self-signed SSL certificate

1. SSH into your Matillion ETL instance.

2. Issue the following commands:

3. sudo su - root

4. openssl req -nodes -new -x509 -subj "/C=GB" -keyout /usr/share/tomcat/conf/localhost.key -out /usr/share/tomcat/conf/localhost.crt
5. chown -R tomcat: /usr/share/tomcat/conf/localhost.*
6. chmod g+w /usr/share/tomcat/conf/localhost.*
7. service tomcat restart

:::info{title='Note'} These commands are only valid for instances of Matillion ETL that store their certificates in the following location: /usr/share/tomcat/conf/ :::

---

Video example

Watch our video guide to using an SSL HTTPS certificate to learn more.