You appear to be attempting to import (last step) the certificate
request you created. Instead, you should be waiting for / getting back
your CA's signed version of your CSR, then import that.. Otherwise,
create self signed cert to import, if you dont need users to trust your
claimed identity.
best,
ken
Iosev Perez Rivero wrote:
I have a problem for configure SSL protocol using keytool
C:\Tomcat55\webapps\ROOT>keytool -genkey -alias tomcat -keyalg RSA -keystore .ke
ystore
Enter keystore password: eileen
What is your first and last name?
[Unknown]: iosev
What is the name of your organizational unit?
[Unknown]: uci
What is the name of your organization?
[Unknown]: uci
What is the name of your City or Locality?
[Unknown]: uci
What is the name of your State or Province?
[Unknown]: uci
What is the two-letter country code for this unit?
[Unknown]: cu
Is CN=iosev, OU=uci, O=uci, L=uci, ST=uci, C=cu correct?
[no]: yes
Enter key password for <tomcat>
(RETURN if same as keystore password): eileen
C:\Tomcat55\webapps\ROOT>keytool -certreq -keyalg RSA -alias tomcat -file certre
q.csr -keystore .keystore
Enter keystore password: eileen
C:\Tomcat55\webapps\ROOT>keytool -import -alias root -keystore .keystore -trustc
acerts -file chain
Enter keystore password: eileen
Certificate was added to keystore
C:\Tomcat55\webapps\ROOT>keytool -import -alias tomcat -keystore .keystore -trus
tcacerts -file certreq.csr
Enter keystore password: eileen
keytool error: java.security.cert.CertificateException: sun.security.pkcs.Parsin
gException: X509.ObjectIdentifier() -- data isn't an object ID (tag = 48)
please someone may help me.
Sorry me English because i´m Cuban.
Iósev Pérez Rivero
Estudiante 4to. Año
Universidad de las Ciencias Informáticas
---------------------------------------------------------------------
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
