johnymachine's questions

For starters, i have my Tomcat8 configured for https with valid certificated linked in connector xml file.

Something like this:

    <Connector port="443" protocol="org.apache.coyote.http11.Http11NioProtocol"
           SSLEnabled="true" maxThreads="150" scheme="https" secure="true"
           clientAuth="false" sslProtocol="TLS" enableLookups="false" keyAlias="https"
           keystoreFile="C:\Program Files\Apache Software Foundation\Tomcat 8.0\conf\keystore.jks"
           keystorePass="changeit"/>

But I need my web aplication to connect as client to third party data provider with valid certificate. Where do i put this extra certificate? When I put in keystore for connector, "https" certificate is not first certificate and it breaks stuff. I can probably fix that with keyAlias atribute in connector...

But... Are the connector keystores application wide? What is the best option for this kind of setup?

This article pretty much sums up my options, which one to pick? Best option seems to be pass keystore with both certificates to JVM, but how to tell connector which certificate to use?

EDIT:

After suggestion I edited my connector and keystore like this:

Now I am getting:

Wrapped javax.net.ssl.SSLHandshakeException:
sun.security.validator.ValidatorException:
PKIX path building failed:
sun.security.provider.certpath.SunCertPathBuilderException:
unable to find valid certification path to requested target
Cause: sun.security.validator.ValidatorException: PKIX path building 
failed: sun.security.provider.certpath.SunCertPathBuilderException:
unable to find valid certification path to requested target]

Having this code in powershell:

$Servers = "computer.domain.com"

# Open Session
$Session = New-PSSession -ComputerName $Servers

# Create Daily Checkpoints.
Invoke-Command -Session $Session -ScriptBlock {Get-Vm * | Checkpoint-Vm -SnapshotName "Daily Snapshot" –AsJob}

My snapshot is created but with default name, why is -SnapshotName parameter ignored?

Doing this from PS ISE works as expected...

I am trying to setup trunk between those two (ESXi 6.5 with HP 1820-48G) and nothing seems to work.

I have read vmware kb article (can not insert link) and no luck.

These are my setup options, brute forced them all and nothing is any good. I am either not getting connection or there are strange problems with connection out and resolving dns.

ESXi options:

Switch options:

Cant really do much debugging... is it even possible?

Well question is above, but to explain my setup:

• Mikrotik as gateway running DHCP (DNS set to AD)
• Windows 2012 as Active Directory and DNS
• CentOs7 as client

I let CentOs pickup IP from DHCP on mikrotik and then join the machine to AD using this tutorial: https://www.rootusers.com/how-to-join-centos-linux-to-an-active-directory-domain/

But my DNS records are not updating automatically as with windows clients. Using verbose argument while domain joining, I received: Unable to perform DNS Update. DNS update failed: NT_STATUS_INVALID_PARAMETER.

I looked around the internet and I could not find clear explanation anywhere. Is it possible to achieve this behavior with current setup?