FAQ Database Discussion Community


Corporate Java Webstart Distribution: use site-wide accepted certificate to sign a code-signing certificate

java,security,certificate,java-web-start,keytool
We are at a big organization with a several applications that are developed for internal and external use. One of those application is distributed as Java Webstart application and after a lot of trial and error we now have proper signing and packaging in place. The only problem: we use...

how does tomcat know which certificaate to provide

java,tomcat,ssl,keytool
I'm using tomcat server as a servlet container, I wanted the connections to this server to be secure "https" so I created a keystore, using the command keytool -genkey -keyalg RSA -keystore tomcat.jks I filled the prompt questions and then generated a CSR from this key and signed it using...

How to integrate SSL certificates to the cacerts file in /jre/security folder?

java,linux,ssl,ssl-certificate,keytool
Recently our server got upgraded to SHA-256 based SSL certificate. And from then we are facing javax.naming.CommunicationException . In order to resolve this issue i need to add/append a set of Certificate Chain into CACERTS file under the path /usr/lib/jvm/jre/lib/security of our server. I found this link of SO which...

Apache Tomcat for Windows SSL Implementation not working

java,apache,tomcat,ssl,keytool
Environment: Windows 2003 Server - 64-bit Server Name: devtest.domain.local Apache Tomcat 6.0.36 Server - http://tomcat.apache.org/ (Windows) Sun Java JDK: jdk1.6.0_26 Have both: %CATALINA_HOME% and %JAVA_HOME% defined. CATALINA_HOME=d:\tomcat JAVA_HOME=D:\Program Files\Java\jdk1.6.0_26 Generating the CSR for our Certificate Authority.. "%JAVA_HOME%\bin\keytool.exe" -genkey -alias "test.domain.local" -keyalg RSA -sigalg SHA256withRSA -keysize 2048 -keystore "C:\NewCert\keystore.ks" -dname...

Android Debug Keytool Error

android,keytool
I can't seem to get the SHA1 string from running the keytool command. When I am prompted for the password for my debug key I enter "android" and after hitting enter I get a string of weird characters. Please see below. C:\Program Files\Java\jdk1.7.0_79\bin>keytool -exportcert -alias androiddebugkey -keystore C:\Users\CaduDesktop\.android\debug.keystore Enter keystore...

unable to connect to ssl server Received fatal alert: certificate_unknown and ReadDataRecord(SSLSocketImpl

java,sockets,ssl,ssl-certificate,keytool
I have a situation where client A should connect to server B and server B should connect to server C.and connection must be of secure socket. I tried and successfully established connection b/w A to B and B to C individually.But when i tried to establish connection simultaneously to A...

HAProxy SSL termination + client certificate validation + curl / java client

java,ssl,curl,haproxy,keytool
I would like to have SSL termination on HAProxy, using my own self-signed certificates, and to validate client access using client certificates I create. I create the server (which is also the CA) certificates the following way: openssl genrsa -out ca.key 1024 openssl req -new -key ca.key -out ca.csr openssl...

Self-signed Certificate and Client Keystore for SSL Authentication

java,ssl,certificate,keystore,keytool
I need to create and install a self-signed certificate on the server (an XML hardware appliance) to do SSL authentication of a Java client/application which, through its interface configuration, can set keystores, i.e. .jks. I only need this setup for testing purposes and not production, for obvious reasons. Here's how...

Converting a signed jar file to working non-error throwing unsigned jar file by reverse engineering

java,reverse-engineering,code-signing,keytool,jarsigner
I have been searching online about Java Jar signing concepts for some time now to understand what is actually happening when one actually signs his/her jar file.I have looked into various articles pertaining to this , however i ended up reading ones with complex jargons which were not simple to...

How to use keytool API from org.codehaus.mojo?

java,keytool,mojo
I am trying to use mojo keytool API from codehaus - http://mojo.codehaus.org/keytool/keytool-api/index.html I have set up a sample project and just trying to perform changeAlias request through API. Here is my sample code: KeyToolChangeAliasRequest request = new KeyToolChangeAliasRequest(); request.setVerbose(true); request.setKeystore("keystore.ks"); request.setStorepass("keypass"); request.setAlias(oldAlias); request.setKeypass("keypass"); request.setDestalias(newAlias); DefaultKeyTool keyTool = new DefaultKeyTool(); JavaToolResult...

Android keystore password change

android,google-play,keytool,android-keystore
I would like to change the password I use in my keystore for an android app that is already available in google play and I would like to know some things before I do it: 1) If I change the keystore password, could I continue using the same keystore for...

keytool error: java.io.IOException: Illegal header: -----BEGIN CERTIFICATE-----

linux,keytool
Using the following command: /usr/lib/jvm/java-1.7.0-openjdk-1.7.0.55.x86_64/bin/keytool -import -alias tomcat -trustcacerts -file certificate.crt -keystore $OBM_HOMEconf/keystore I receive the error: keytool error: java.security.cert.CertificateException: java.io.IOException: Illegal header: -----BEGIN CERTIFICATE----- I generated the certificate on GoDaddy, as I had done previously for the server I'm trying to install this cert on, and downloaded the Tomcat...