remove-from-keystore
Removes a key/certificate entry from the specified server keystore.
Synopsis
asadmin remove-from-keystore [--help]
[--reload={false|true}]
[--domainName=name]
[--domainDir=directory]
[--node=nodeName]
[--nodeDir=directory]
[--listener=listenername]
[--target=instanceName]
[alias]Description
This command removes a private key and certificate entry from the target instance or listener’s keystore matching the provided alias.
If the instance or listener is configured to use the default key store, the command will instead synchronize the instance with the DAS (under the assumption the certificate has been removed from the default key store of the DAS), since any certificates removed from the instance stores would be lost upon its next synchronisation.
Options
--help-?-
Displays the help text for the subcommand.
--target-
This option helps specify the target on which you are removing from its keystore. Valid values are:
server-
Applies to the default server instance. This is the default value.
- cluster_name
-
Applies to every server instance in the cluster.
- instance_name
-
Applies to a specified sever instance.
--reload-
Whether the HTTP listeners should be reloaded. Defaults to
false --listener-
The name of the HTTP or IIOP listener to add the certificate to.
--domainname-
The name of the domain where the target instance exists.
Defaults to
domain1or the existing domain if only one exists. --domainDir-
The path to the directory containing the target domain.
Defaults to
as-install/glassfish/domains --node-
The name of the node where the target instance exists.
Defaults to
localhost-$domainname --nodeDir-
The path to the directory containing the target node.
Defaults to
as-install/glassfish/nodes
Examples
Example 1 Remove the mycert entry from the production domain’s keystore
asadmin remove-from-keystore --domainName production --listener http-listener-2 mycert