How to add certificate chain to keystore? How to add certificate chain to keystore? java java

How to add certificate chain to keystore?


java openssl certificate keystore keytool

I solved the problem by cat'ing all the pems together:

cat cert.pem chain.pem fullchain.pem >all.pemopenssl pkcs12 -export -in all.pem -inkey privkey.pem -out cert_and_key.p12 -name tomcat -CAfile chain.pem -caname root -password MYPASSWORDkeytool -importkeystore -deststorepass MYPASSWORD -destkeypass MYPASSWORD -destkeystore MyDSKeyStore.jks -srckeystore cert_and_key.p12 -srcstoretype PKCS12 -srcstorepass MYPASSWORD -alias tomcatkeytool -import -trustcacerts -alias root -file chain.pem -keystore MyDSKeyStore.jks -storepass MYPASSWORD

(keytool didn't know what to do with a PKCS7 formatted key)

I got all the pems from letsencrypt

java openssl certificate keystore keytool

From the keytool man - it imports certificate chain, if input is given in PKCS#7 format, otherwise only the single certificate is imported.You should be able to convert certificates to PKCS#7 format with openssl, via openssl crl2pkcs7 command.

Recent Posts
How can I color dots in a xy scatterplot according to column value?
How to update a claim in ASP.NET Identity?
What does {0} mean when initializing an object?
Accessing members of items in a JSONArray with Java
How to log SQL statements in Spring Boot?
Powershell Get-WebSite name parameter is ignored
How to detect scroll to bottom of html element
Java synchronized method
How to test controllers with CodeIgniter?
Detect Visual Composer
Matplotlib: Specify format of floats for tick labels
Rails join a list of strings with commas and "and" before the last