Create a single cert bundle that includes the wildcard cert and key, also include any required intermediate certs.
mkdir workspace
tree workspace/
workspace/
├── gd_bundle-g2.crt
├── monsoontools.com.crt
└── monsoontools.com.key
cd workspace
cat monsoontools.com.crt monsoontools.com.key gd_bundle-g2.crt > monsoontools.com.pem
openssl pkcs12 -export -in monsoontools.com.pem -out monsoontools.com.p12
Enter Export Password:
Verifying - Enter Export Password:
sudo keytool -importkeystore -srckeystore monsoontools.com.p12 -srcstoretype PKCS12 \
-destkeystore edp-keystore
Enter destination keystore password:
Re-enter new password:
Enter source keystore password:
Entry for alias 1 successfully imported.
Import command completed: 1 entries successfully imported, 0 entries failed or cancelled
cp edp-keystore $APOLLO_INSTALL_PATH/etc/edp-keystore
Edit: $APOLLO_INSTALL_PATH/etc/apollo.xml
<key_storage file="${apollo.base}/etc/edp-keystore" password="password" key_password="password"/>
sudo service /apollo-broker-service restart