I have provided below the implementation steps for integrating KNOX with Loadbalancer assuming once your Loadbalancer is ready.
SSL connection should terminate on Knox servers at Loadbalancer side Sticky session should be enabled. Currently the SSL connection terminates at load balancer side and internally it encrypts and loops through one of the KNOX channels.
JKS file creation
OPEN in IE browser the load balancer URL
Click on lock symbol click on view certificates and Certificate path
choose Root click on view certificate--details--copytofile--base 509 format --save as .pem file
choose intermediateIssuer CA click on view certificate--details--copytofile--base 509 format --save as .pem file
choose loadbalncercert and click on details--copytofile--base 509 format --save as .pem file
changing the URL and port appropriately.
<JAVA_HOME>/bin/java SSLPoke jira.example.com 443
A failed connection would produce the below: 1 /usr/bin/java SSLPoke jira.example.com 443 2 sun.security.validator.ValidatorException: PKIX path building failed: sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested target