/

How to Enable SSL Debug on the Security Server?

How to Enable SSL Debug on the Security Server?

Owned by Petteri Kivimäki

Last updated: Jan 17, 2020

Enabling SSL debug temporarily on the Security Server can help to solve SSL related issues.

Step-by-step guide

SSL debug is enabled completing the steps below.

Add the line below to /etc/xroad/services/local.conf
/etc/xroad/services/local.conf
```
PROXY_PARAMS="$PROXY_PARAMS -Djavax.net.debug=ssl:handshake "
```
Restart xroad-proxy (sudo systemctl restart xroad-proxy).
View the log in systemd journal (journalctl -f -u xroad-proxy).

Remember to disable SSL debug once it is not needed anymore.

Related articles

security-server

kb-how-to-article

Related content

How to Change the Security Server UI/API TLS Certificate?

How to Change the Security Server UI/API TLS Certificate?

X-Road Knowledge Base

More like this

How to Replace the Security Server Internal TLS Key and Certificate?

How to Replace the Security Server Internal TLS Key and Certificate?

X-Road Knowledge Base

More like this

Sending Authentication Certificate Registration Request from the Security Server to the Central Server Fails

Sending Authentication Certificate Registration Request from the Security Server to the Central Server Fails

X-Road Knowledge Base

More like this

How to change Security Server logging levels?

How to change Security Server logging levels?

X-Road Knowledge Base

More like this

What Kind of Keys and Certificates the Security Server Has?

What Kind of Keys and Certificates the Security Server Has?

X-Road Knowledge Base

More like this

How to Interpret Security Server Proxy Error Messages?

How to Interpret Security Server Proxy Error Messages?

X-Road Knowledge Base

More like this