How to Enable SSL Debug on the Security Server?

Enabling SSL debug temporarily on the Security Server can help to solve SSL related issues.

Step-by-step guide

SSL debug is enabled completing the steps below.

1. Add the line below to /etc/xroad/services/local.conf

   /etc/xroad/services/local.conf

   PROXY_PARAMS="$PROXY_PARAMS -Djavax.net.debug=ssl:handshake "

2. Restart xroad-proxy (sudo systemctl restart xroad-proxy).
3. View the log in systemd journal (journalctl -f -u xroad-proxy).

Related articles

• Page:
  How to Interpret Security Server Proxy Error Messages?
• Page:
  How to Set Up a Local Test Environment Using Docker Compose?
• Page:
  Security Server Cluster RHEL 8 (or RHEL 7) to RHEL 9 Upgrade
• Page:
  How to Upgrade Security Server to RHEL 9 Using a Configuration Backup?
• Page:
  How to Access the Security Server Postgres Database?