importing an existing certificate
Hello all, I'm in the process of migrating an application from Lotus Domino to Tomcat 4.0. The new application will reside on the same server as the old application. We have recently renewed our certificate with Verisign; the original request was generated by Domino. I would like to use the same certificate for Tomcat. Is this even possible? I've been unable to find any information in the keytool documentation for importing a certificate that keytool did not itself request. Thanks, Marty Martin Lamb ROI Computer Services, Inc. 610-873-0300
Re: importing an existing certificate
[EMAIL PROTECTED] wrote: > > Hello all, > > I'm in the process of migrating an application from Lotus Domino to Tomcat > 4.0. The new application will reside on the same server as the old > application. We have recently renewed our certificate with Verisign; the > original request was generated by Domino. I would like to use the same > certificate for Tomcat. Is this even possible? I've been unable to find > any information in the keytool documentation for importing a certificate > that keytool did not itself request. keytool -import > > Thanks, > > Marty > > Martin Lamb > ROI Computer Services, Inc. > 610-873-0300
Re: importing an existing certificate
It's not that simple because you need to import the private key as well. I'm in the same situation, except that I'm importing from Apache Web Server to Tomcat in standalone mode. I posted this question a few days ago and someone told me about the following link which has a program that is supposed to be able to import the private key. I haven't had a chance to test it yet. http://www.comu.de/docs/tomcat_ssl.htm I'm pretty sure that the program mainly just makes use of the key store API provided by the JDK. Although it should, keytool itself doesn't expose such functionality as far as I know. Jon - Original Message - From: "jean-frederic clere" <[EMAIL PROTECTED]> To: <[EMAIL PROTECTED]> Sent: Friday, September 21, 2001 7:23 AM Subject: Re: importing an existing certificate > [EMAIL PROTECTED] wrote: > > > > Hello all, > > > > I'm in the process of migrating an application from Lotus Domino to Tomcat > > 4.0. The new application will reside on the same server as the old > > application. We have recently renewed our certificate with Verisign; the > > original request was generated by Domino. I would like to use the same > > certificate for Tomcat. Is this even possible? I've been unable to find > > any information in the keytool documentation for importing a certificate > > that keytool did not itself request. > > keytool -import > > > > > Thanks, > > > > Marty > > > > Martin Lamb > > ROI Computer Services, Inc. > > 610-873-0300 >
Re: importing an existing certificate
Actually, if this works, and if keytool doesn't allow you to do this, it might not be a bad idea if a utility were included with Tomcat that allowed you to migrate your certificate from Apache Web Server to Tomcat standalone. Over time, I suspect that many users may want to do this. Jon - Original Message - From: "Jonathan Eric Miller" <[EMAIL PROTECTED]> To: <[EMAIL PROTECTED]>; <[EMAIL PROTECTED]> Sent: Sunday, September 23, 2001 12:22 PM Subject: Re: importing an existing certificate > It's not that simple because you need to import the private key as well. I'm > in the same situation, except that I'm importing from Apache Web Server to > Tomcat in standalone mode. I posted this question a few days ago and someone > told me about the following link which has a program that is supposed to be > able to import the private key. I haven't had a chance to test it yet. > > http://www.comu.de/docs/tomcat_ssl.htm > > I'm pretty sure that the program mainly just makes use of the key store API > provided by the JDK. Although it should, keytool itself doesn't expose such > functionality as far as I know. > > Jon > > - Original Message - > From: "jean-frederic clere" <[EMAIL PROTECTED]> > To: <[EMAIL PROTECTED]> > Sent: Friday, September 21, 2001 7:23 AM > Subject: Re: importing an existing certificate > > > > [EMAIL PROTECTED] wrote: > > > > > > Hello all, > > > > > > I'm in the process of migrating an application from Lotus Domino to > Tomcat > > > 4.0. The new application will reside on the same server as the old > > > application. We have recently renewed our certificate with Verisign; > the > > > original request was generated by Domino. I would like to use the same > > > certificate for Tomcat. Is this even possible? I've been unable to > find > > > any information in the keytool documentation for importing a certificate > > > that keytool did not itself request. > > > > keytool -import > > > > > > > > Thanks, > > > > > > Marty > > > > > > Martin Lamb > > > ROI Computer Services, Inc. > > > 610-873-0300 > > >
Re: importing an existing certificate
You can import openssl certificates with no problems !!! See at ... http://www.comu.de/docs/tomcat_ssl.htm Ricardo Borillo Domenech Programació - Servei d'Informàtica Universitat Jaume I - Original Message - From: "Jonathan Eric Miller" <[EMAIL PROTECTED]> To: <[EMAIL PROTECTED]> Sent: Sunday, September 23, 2001 7:29 PM Subject: Re: importing an existing certificate > Actually, if this works, and if keytool doesn't allow you to do this, it > might not be a bad idea if a utility were included with Tomcat that allowed > you to migrate your certificate from Apache Web Server to Tomcat standalone. > Over time, I suspect that many users may want to do this. > > Jon > > - Original Message - > From: "Jonathan Eric Miller" <[EMAIL PROTECTED]> > To: <[EMAIL PROTECTED]>; <[EMAIL PROTECTED]> > Sent: Sunday, September 23, 2001 12:22 PM > Subject: Re: importing an existing certificate > > > > It's not that simple because you need to import the private key as well. > I'm > > in the same situation, except that I'm importing from Apache Web Server to > > Tomcat in standalone mode. I posted this question a few days ago and > someone > > told me about the following link which has a program that is supposed to > be > > able to import the private key. I haven't had a chance to test it yet. > > > > http://www.comu.de/docs/tomcat_ssl.htm > > > > I'm pretty sure that the program mainly just makes use of the key store > API > > provided by the JDK. Although it should, keytool itself doesn't expose > such > > functionality as far as I know. > > > > Jon > > > > - Original Message - > > From: "jean-frederic clere" <[EMAIL PROTECTED]> > > To: <[EMAIL PROTECTED]> > > Sent: Friday, September 21, 2001 7:23 AM > > Subject: Re: importing an existing certificate > > > > > > > [EMAIL PROTECTED] wrote: > > > > > > > > Hello all, > > > > > > > > I'm in the process of migrating an application from Lotus Domino to > > Tomcat > > > > 4.0. The new application will reside on the same server as the old > > > > application. We have recently renewed our certificate with Verisign; > > the > > > > original request was generated by Domino. I would like to use the > same > > > > certificate for Tomcat. Is this even possible? I've been unable to > > find > > > > any information in the keytool documentation for importing a > certificate > > > > that keytool did not itself request. > > > > > > keytool -import > > > > > > > > > > > Thanks, > > > > > > > > Marty > > > > > > > > Martin Lamb > > > > ROI Computer Services, Inc. > > > > 610-873-0300 > > > > > > >
