You appear to be attempting to import (last step) the certificate request you created. Instead, you should be waiting for / getting back your CA's signed version of your CSR, then import that.. Otherwise, create self signed cert to import, if you dont need users to trust your claimed identity.

best,
ken

Iosev Perez Rivero wrote:
I have a problem for configure SSL protocol using keytool
C:\Tomcat55\webapps\ROOT>keytool -genkey -alias tomcat -keyalg RSA -keystore .ke

ystore

Enter keystore password:  eileen

What is your first and last name?

  [Unknown]:  iosev

What is the name of your organizational unit?

  [Unknown]:  uci

What is the name of your organization?

  [Unknown]:  uci

What is the name of your City or Locality?

  [Unknown]:  uci

What is the name of your State or Province?

  [Unknown]:  uci

What is the two-letter country code for this unit?

  [Unknown]:  cu

Is CN=iosev, OU=uci, O=uci, L=uci, ST=uci, C=cu correct?

  [no]:  yes

Enter key password for <tomcat>

        (RETURN if same as keystore password):  eileen

C:\Tomcat55\webapps\ROOT>keytool -certreq -keyalg RSA -alias tomcat -file certre

q.csr -keystore .keystore

Enter keystore password:  eileen

C:\Tomcat55\webapps\ROOT>keytool -import -alias root -keystore .keystore -trustc

acerts -file chain

Enter keystore password:  eileen

Certificate was added to keystore

C:\Tomcat55\webapps\ROOT>keytool -import -alias tomcat -keystore .keystore -trus

tcacerts -file certreq.csr

Enter keystore password:  eileen

keytool error: java.security.cert.CertificateException: sun.security.pkcs.Parsin

gException: X509.ObjectIdentifier() -- data isn't an object ID (tag = 48)

please someone may help me.

Sorry me English because i´m Cuban.

Iósev Pérez Rivero

Estudiante 4to. Año

Universidad de las Ciencias Informáticas






---------------------------------------------------------------------
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Reply via email to