How to import an existing X.509 certificate and private key in Java keystore to use in SSL?

by

I used the following two steps which I found in the comments/posts linked in the other answers:

Step one: Convert the x.509 cert and key to a pkcs12 file

openssl pkcs12 -export -in server.crt -inkey server.key \
               -out server.p12 -name [some-alias] \
               -CAfile ca.crt -caname root

Note: Make sure you put a password on the pkcs12 file – otherwise you’ll get a null pointer exception when you try to import it. (In case anyone else had this headache). (Thanks jocull!)

Note 2: You might want to add the -chain option to preserve the full certificate chain. (Thanks Mafuba)

Step two: Convert the pkcs12 file to a Java keystore

keytool -importkeystore \
        -deststorepass [changeit] -destkeypass [changeit] -destkeystore server.keystore \
        -srckeystore server.p12 -srcstoretype PKCS12 -srcstorepass some-password \
        -alias [some-alias]

Finished

OPTIONAL Step zero: Create self-signed certificate

openssl genrsa -out server.key 2048
openssl req -new -out server.csr -key server.key
openssl x509 -req -days 365 -in server.csr -signkey server.key -out server.crt

Cheers!

More Related Contents:

  1. jersey rest web Service with Activemq middleware integration
  2. Caused by: java.security.UnrecoverableKeyException: Cannot recover key
  3. How to convert certificate from PEM to JKS?
  4. Resolving javax.net.ssl.SSLHandshakeException: sun.security.validator.ValidatorException: PKIX path building failed Error?
  5. Accept server’s self-signed ssl certificate in Java client
  6. SSL handshake alert: unrecognized_name error since upgrade to Java 1.7.0
  7. Why does SSL handshake give ‘Could not generate DH keypair’ exception?
  8. Warning about SSL connection when connecting to MySQL database
  9. javax.net.ssl.SSLException: Received fatal alert: protocol_version
  10. Using a custom truststore in java as well as the default one
  11. How to use TLS 1.2 in Java 6
  12. How to programmatically set the SSLContext of a JAX-WS client?
  13. SQL Server JDBC Error on Java 8: The driver could not establish a secure connection to SQL Server by using Secure Sockets Layer (SSL) encryption
  14. Java SSL: how to disable hostname verification
  15. Problems connecting via HTTPS/SSL through own Java client
  16. How to enable SSL 3 in Java
  17. Choosing SSL client certificate in Java
  18. JavaMail IMAP over SSL quite slow – Bulk fetching multiple messages
  19. How to do an HTTPS POST from Android?
  20. Java and SSL – java.security.NoSuchAlgorithmException
  21. Properly closing SSLSocket
  22. SSL Connection Reset
  23. How can I know if the request to the servlet was executed using HTTP or HTTPS?
  24. Maven: resource binary changes file size after build
  25. How to connect to a secure website using SSL in Java with a pkcs12 file?
  26. How Can I Access an SSL Connection Through Android?
  27. SSLSocket ignores domain mismatch
  28. Setting multiple truststore on the same JVM
  29. Java Keytool error after importing certificate , “keytool error: java.io.FileNotFoundException & Access Denied”
  30. Can we load multiple Certificates & Keys in a Key Store?

Leave a Comment