/
How to Enable SSL Debug on the Security Server?

How to Enable SSL Debug on the Security Server?

Enabling SSL debug temporarily on the Security Server can help to solve SSL related issues.

Step-by-step guide

SSL debug is enabled completing the steps below.

  1. Add the line below to /etc/xroad/services/local.conf

    /etc/xroad/services/local.conf
    PROXY_PARAMS="$PROXY_PARAMS -Djavax.net.debug=ssl:handshake "
  2. Restart xroad-proxy (sudo systemctl restart xroad-proxy).
  3. View the log in systemd journal (journalctl -f -u xroad-proxy).


Remember to disable SSL debug once it is not needed anymore.