How to Enable SSL Debug on the Security Server?

Enabling SSL debug temporarily on the Security Server can help to solve SSL related issues.

Step-by-step guide

SSL debug is enabled completing the steps below.

1. Add the line below to /etc/xroad/services/local.conf

   /etc/xroad/services/local.conf

   PROXY_PARAMS="$PROXY_PARAMS -Djavax.net.debug=ssl:handshake "

2. Restart xroad-proxy (sudo systemctl restart xroad-proxy).
3. View the log in systemd journal (journalctl -f -u xroad-proxy).

Related articles

• Page:
  How to Manually Remove Security Server Installation?
• Page:
  How to Store the PIN Code in the Azure Key Vault?
• Page:
  How to Change the Security Server UI/API TLS Certificate?
• Page:
  What Kind of Keys and Certificates the Security Server Has?
• Page:
  How to Store the PIN Code in the AWS Systems Manager Parameter Store?