tomcat-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Ognjen Blagojevic <ognjen.d.blagoje...@gmail.com>
Subject Re: More, Re: Problem bringing up SSL with a CA certificate
Date Thu, 19 Jan 2012 09:50:24 GMT
James,

On 19.1.2012 1:41, James Lampert wrote:
>> secondary, Jan 18, 2012, trustedCertEntry,
>> Certificate fingerprint (MD5):
>> EB:A3:71:66:38:5E:3E:F4:24:64:ED:97:52:E9:9F:1B
>> wintouch, Jan 18, 2012, trustedCertEntry,
>> Certificate fingerprint (MD5):
>> 55:D7:4D:D4:83:01:D6:E0:EB:A4:F3:9A:06:BD:87:38
>> primary, Jan 18, 2012, trustedCertEntry,
>> Certificate fingerprint (MD5):
>> D6:6A:92:1C:83:BF:A2:AE:6F:99:5B:44:E7:C2:AB:2A

The order of the certificates listed is not important.

Assuming that "wintouch" is alias for your certificate, it seems that 
you imported signed certificate into brand new keystore, instead of the 
keystore which contains earlier generated key pair.

You must find keystore with earlier generated key pair (the one you also 
used to generate CSR for CA), and import all three certificates into 
that keystore.

Once you do that, keytool -list should return:

secondary, ... trustedCertEntry,
...
wintouch, ... PrivateCertEntry,
...
primary, ... trustedCertEntry,
...


It should say "PrivateKeyEntry" next to "wintouch".

-Ognjen


---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscribe@tomcat.apache.org
For additional commands, e-mail: users-help@tomcat.apache.org


Mime
View raw message