Thanks Chris! I want to get public & private keys from WebSphere and import into Tomcat.
We have WebSphere certificates (Signed by Verisign) until 2015 and we want to use the same in tomcat. When I create a keystore (keytool -genkey -alias tomcat -keyalg RSA -keystore /opt/tomcat/SSL/tomcat.keystore), a keystore is getting created. But I'm unable to import the certificates into it. Is there any document or documentation which might be helpful? Could you please let me know? Thanks. -----Original Message----- From: Christopher Schultz [mailto:ch...@christopherschultz.net] Sent: Monday, March 31, 2014 2:58 PM To: Tomcat Users List Subject: Re: SSL Certificates -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Ninthun, On 3/31/14, 10:19 AM, Bomma, Nithun wrote: > Hello, > > We are using WebSphere v6.1 for SSO and we are moving to ForgeRock and > it uses Apache Tomcat (v7.0.37) > > We are trying to import the certificates (Verisign) including the > chain certificates from WebSphere to Tomcat. > > Have any of you did this before? If yes, could you help us out? Websphere probably should be using Java keystores. You should just be able to use the same keystore, although something might need to be re-named or something. Save yourself a huge headache and use Portecle: http://portecle.sourceforge.net/ You should be able to take your server key and issued certificate and create a new Java Keystore to use with the BIO or NIO connectors. If you are using APR, then you will have to export your key and certificate to individual files and configure them appropriately. Hope that helps, - -chris -----BEGIN PGP SIGNATURE----- Version: GnuPG v1 Comment: GPGTools - http://gpgtools.org Comment: Using GnuPG with Thunderbird - http://www.enigmail.net/ iQIcBAEBCAAGBQJTObq8AAoJEBzwKT+lPKRY99sQAKdQryt76EFPHD42vk72o/pJ vgBaWBsLL57rK+6LgsUSuNneTviGaBkDY6kBVjnGzA1w3I9MJn4XnhX8Pm/Z1ZQd rpYDk3/E+CI2Gh5C6HTkgcXE/hffQ8xKAhS/CZj4riJu6S3YSIPFtX6H3vTkQD1A tWlUE8fEWm0Wo529izbiPPPseZTBdAU1Sbv4z4AEjZolrxyvE6Bm0GSyvSYTu5cm g0oxv7hoSl8IxKHaI6mxmRFLCrBSRBmIHp6vSB7OHzmx0pi6UuZzWnhjL9N1VhZ6 zA3vxlQlicXxjMdWOY2dsy6GLxzK+CmOK61Fk52uJMRJgEz1Dzdb2hyuypdt1aVC F160wtePQpbYkjnXusjsfE8PsiZxFyiFOBbfVnoni6yY7DiVSID5lglbvXPjnveA jMCHKTjDrGZAeou7Tuu1aUMqvg9kaSOlCGAstK5G5wuAV8GSvGoqAfuZ70EbrTdj pqK4xGl+uFKaJfw0bkFzD6seSWevk8CiWCZ46h3JVISM42VWqtiWnfKkTNjFSUVx ECFll3YGmEwWbwo9cTDHD/GJYMqi878vhA34v/YmOVFLV6dVy0hOjudC6NXeu9/t Hk2AGm82Fi5mgP3ZWT8K35/GcH1ezd77M+jFmikFjCZC6btZw26ir2A9i2xbdZ// In71YEw3kQauMHA6UsgL =BbUU -----END PGP SIGNATURE----- --------------------------------------------------------------------- To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org --------------------------------------------------------------------- To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org