1 of 1 people found this helpful
I don't know about WildFly 10, but in WildFly >= 14 it works with:
jboss-cli.sh --connect --commands=/subsystem=elytron/key-store=<name of key store>:load,/subsystem=elytron/key-manager=<name of key manager>:init
And no restart of WildFly is needed.
Thanks for letting me know that v14 does not require a reboot. We have an upgrade to v14 later this year but I'd sure like to find a way to avoid rebooting with v10 if I can. Does anyone else have any ideas about v10?
For WildFly 10, it looks like a restart will be needed.
From WildFly 11+, it is possible to use the Elytron subsystem key-store load operation to switch to using the new certificate without restarting the server. Details on this can be found here.
For details on how to get started with Let's Encrypt with WildFly 14+, see https://developer.jboss.org/people/fjuma/blog/2018/08/31/obtaining-certificates-from-lets-encrypt-using-the-wildfly-cli. This post also gives an example of how certificate renewal can be done without needing to restart WildFly.
Hi Farah, Thank you for the very helpful links - I'll start following your blog!