Is it possible to change the SSL certificate that the GroupWise 18 Admin Console uses? I know in GW 2014 there was no supported method of doing it.
Unfortunately, you can't replace the GroupWise CA issued certs with external ones.
" ... For your convenience, the GroupWise CA can generate certificates until you obtain your commercially signed certificates." ... an intermediate solution and further on:
Certificate Best Practices
- If you obtain your certificates from an intermediate CA, the certificate for that intermediate CA and all other intermediate CAs leading to the Trusted Root CA must be appended to your certificate file.
- For TLS communication between the agents and servers, the Fully Qualified Domain Name (FQDN) of the server should be the used for the Subject Alternative Name (SAN) on the certificate. Also, the GroupWise agents should be configured with the FQDN instead of the IP address on the Agent Settings tab for all GroupWise agents.
keytool -importkeystore -srckeystore mycert.p12 -destkeystore cacerts -deststoretype pkcs12 -destkeypass
keytool -import -alias IntermediateCA -keystore cacerts -trustcacerts -file intermediate.pem
keytool -import -alias tomcat -keystore cacerts -trustcacerts -file mycert.pem