/
How to Enable SSL Debug on the Security Server?

How to Enable SSL Debug on the Security Server?

Owned by Petteri Kivimäki
Last updated: Jan 17, 2020

Enabling SSL debug temporarily on the Security Server can help to solve SSL related issues.

Step-by-step guide

SSL debug is enabled completing the steps below.

  1. Add the line below to /etc/xroad/services/local.conf

    /etc/xroad/services/local.conf
    PROXY_PARAMS="$PROXY_PARAMS -Djavax.net.debug=ssl:handshake "
  2. Restart xroad-proxy (sudo systemctl restart xroad-proxy).
  3. View the log in systemd journal (journalctl -f -u xroad-proxy).


Remember to disable SSL debug once it is not needed anymore.



Related content

How to Configure Central Server?
How to Configure Central Server?
X-Road Knowledge Base
Read with this
Sending Authentication Certificate Registration Request from the Security Server to the Central Server Fails
Sending Authentication Certificate Registration Request from the Security Server to the Central Server Fails
X-Road Knowledge Base
More like this
How to Change the Security Server UI/API TLS Certificate?
How to Change the Security Server UI/API TLS Certificate?
X-Road Knowledge Base
More like this
Initial Configuration of Security Server Fails
Initial Configuration of Security Server Fails
X-Road Knowledge Base
More like this
Client Specifies HTTPS But Did Not Supply TLS Certificate
Client Specifies HTTPS But Did Not Supply TLS Certificate
X-Road Knowledge Base
More like this
Where I Can Find the Management Service TLS Certificate?
Where I Can Find the Management Service TLS Certificate?
X-Road Knowledge Base
More like this