删除新安装IBM Guardium Data Protection 12.1的baltimorecybertrustroot证书

登录web console，会显示 baltimorecybertrustroot证书过期警告。

采用下面的命令删除过期证书就可消除警告。

collector02.cpd.com> delete certificate keystore

Select an alias from the list below to delete the corresponding certificate.

 

Alias List:

[1] digicertglobalrootca

[2] amazonrootca4

[3] amazonrootca3

[4] gimca

[5] amazonrootca2

[6] amazonrootca1

[7] baltimorecybertrustroot

[8] tomcat

[9] cas

[10] d-trust_root_class_3_ca_2_2009

[11] gim

[12] sfsrootcag2

[13] digicertglobalrootg2

[14] snif

[15] verisigng5

[16] microsofteccrootcertificateauthority2017

[17] solr

[18] signkey

[19] entrust_g3

[20] microsoftrsarootcertificateauthority2017

[21] entrust_g2

[22] entrust_ec1

 

Please select the item number of your choice [1-22 or q to quit]: 7

 

Warning:

The JKS keystore uses a proprietary format. It is recommended to migrate to PKCS12 which is an industry standard format using "keytool -importkeystore -srckeystore /opt/IBM/Guardium/tomcat/.keystore -destkeystore /opt/IBM/Guardium/tomcat/.keystore -deststoretype pkcs12".

 

Alias name: baltimorecybertrustroot

Creation date: Apr 24, 2025

Entry type: trustedCertEntry

 

Owner: CN=Baltimore CyberTrust Root, OU=CyberTrust, O=Baltimore, C=IE

Issuer: CN=Baltimore CyberTrust Root, OU=CyberTrust, O=Baltimore, C=IE

Serial number: 20000b9

Valid from: 5/13/00 2:46 AM until: 5/13/25 7:59 AM

Certificate fingerprints:

MD5: AC:B6:94:A5:9C:17:E0:D7:91:52:9B:B1:97:06:A6:E4

SHA1: D4:DE:20:D0:5E:66:FC:53:FE:1A:50:88:2C:78:DB:28:52:CA:E4:74

SHA256: 16:AF:57:A9:F6:76:B0:AB:12:60:95:AA:5E:BA:DE:F2:2A:B3:11:19:D6:44:AC:95:CD:4B:93:DB:F3:F2:6A:EB

Signature algorithm name: SHA1withRSA

Version: 3

 

 

WARNING: Are you sure that you want to delete the certificate corresponding to alias "baltimorecybertrustroot"? [y/N]

y

 

Warning:

The JKS keystore uses a proprietary format. It is recommended to migrate to PKCS12 which is an industry standard format using "keytool -importkeystore -srckeystore /opt/IBM/Guardium/tomcat/.keystore -destkeystore /opt/IBM/Guardium/tomcat/.keystore -deststoretype pkcs12".

 

SUCCESS: Certificate corresponding to alias "baltimorecybertrustroot" was deleted.

ok

collector02.cpd.com>

执行上面的操作后刷新 浏览器。警告消失。