Home.... | log in.... | Pub my question! | Sign-up....

Java-index >> Web & Directory Servers >> Web Servers

problem installing certificate

Hi,

i have installed SunOne webserver 7 on Solaris10.

i had a problem installing a certificate on

the SunOne webserver7.

i got a .p12 certificate from a wellknown CA.

according to sun i need to enter a .DER

certificate by path to the file or paste

the Binary file.

through openssl command i have converted the .p12 to .pem and from there to .DER.

but it seems that only one part of the certificate is pass from .pem to .DER.

which is the privat key or the certificate

its self i dont know.

.DER is a binary file so i cant see actually what part did he transfer completly.

though the SunOne7 says he cant find the private key.

eventually i have exported the certificate and private key seperatly to .DER files

but couldnt find the command to join them into one .DER file.

if someone can help i will appriciate it.

thanks

[932 byte] By [mongarona] at [2007-11-26 22:02:05]

«« Putting an end to the program
»» path and classpath

# 1

First of all, a CA will never export/expose their private key.So, the DER has only the certificate.Secondly, it's a CA's certificate. So use the Configurations->configname->Certificates->Certificate Authorities tab to install the certificate.

123javahardcorea at 2007-7-10 10:42:29 >

top of Java-index,Web & Directory Servers,Web Servers...

# 2

a littele correction the p12 is already with the certificate and private key

i got it from my security team.

but the stages that you mentioned needs a private key to be imported into the system before the certificate install.

so how do i import the private key.

i didnt generate a request from the web server which in the process generated a private key and installed it for me else i created the certificate via open ssl.

please advice

thanks

mongaron

mongarona at 2007-7-10 10:42:29 >

# 3

If the certificate and key are in a PKCS#12 format file, then you can import it into a server instance using the pk12util command.

First ensure that the administration server config store and the instance are synched by deploying/pulling any changes to one of them.

Then use pk12util to import the pkcs file. You will need the password assigned to the file.

$ ${server-install-dir}/bin/pk12util -i <exported-pkcs12-file> -d ${server-instance-dir}/config

Example:

$ /d2/nelson/webserver7/bin/pk12util -i /d2/nelson/server.pk12 -d /d2/nelson/webserver7/https-example.com/config

Enter password for PKCS12 file:

pk12util: PKCS12 IMPORT SUCCESSFUL

Then pull the config changes into the admin configuration store using wadm

wadm> pull-config --config=example.com server.instance

CLI201 Command 'pull-config' ran successfully

List the certificate

wadm> list-certs --config=example.com --verbose

nickname

ALIAS

nseguraa at 2007-7-10 10:42:29 >

# 4

Works like magic many thanks

mongarona at 2007-7-10 10:42:29 >

Java programming resources: FAQs, tutorials, compiler and browser download sites, documentation, books lists, IDEs, etc.

problem installing certificate

Web & Directory Servers New Topic

Web & Directory Servers Hot Topic

Web & Directory Servers

All Classified