Howto export/import certificates?

Hello,

We would like to sign our applets on all computers with the same certificate and lateron import our certificate company-wide into all computers - so that they don't get questioned wether they trust our applet or not.

As far as I understand I've to export the certificate first and lateron import it into the computers I would like to use it - however how can this be done?

I already googled and also read the arguments of the tools, however I never got a working solution.

A link to an tutorial/howto would be enough, I guess I would just need a starting point :-)

Thank you in advance, lg Clemens

[643 byte] By [linuxhippya] at [2007-10-3 2:06:29]

«« java.util.regex.Matcher is missing important feature found in .net, no?
»» Problem of triangulation with obj files

# 1

This is what I tried till now:

1.) export the certificate on the development machine:

keytool -export -alias tree -file tree.cert

2.) Import it on the customers machine:

* keytool -import -alias tree -file tree.cert

* [Yes] I trust this certificate

However every time I launch the applet I still get asked wether I trust this certificate or not :-/.

Any idea how I could get rid of this dialog?

lg Clemens

linuxhippya at 2007-7-14 19:05:18 >

top of Java-index,Security,Signed Applets...

# 2

When applet loads it shows an dialog which asking you if you accept the certificate.The options are three.Yes, No and Always.Choose the Always option.

JavaPropagatora at 2007-7-14 19:05:18 >

# 3

Yes I know, thats why I asked ;-)But I would like to archive that the dialog is not shown at all ... or at least does tell the user that the guys who created the certificate is trusted.Do you know the steps how this can be done?

linuxhippya at 2007-7-14 19:05:18 >

# 4

> or at least does tell the user that> the guys who created the certificate is trusted.You have to buy a certificate from a trusted authority and sign the applet with this certificate.

JavaPropagatora at 2007-7-14 19:05:18 >

# 5

no, you can also import your self-made certificate into the client's keystore and after this your self-made certificate should also be trusted.

I need this for a large company where my applet is used - for them its no problem to execute startup-scripts which import my certificate, but they don't want to shock customers with security dialogs popping up.

Does anybody know a way to import a self-made certificate in a way so that the security-dialog is not displayed or the self-made certificate is at least displayed as valid and trustworth?

Thank you in advance, lg Clemens

linuxhippya at 2007-7-14 19:05:18 >

# 6

http://java.sun.com/j2se/1.5.0/docs/tooldocs/windows/keytool.html

JavaPropagatora at 2007-7-14 19:05:18 >

# 7

sorry ... but don't you think I already read keytools manual and also googled arround to get more information. Otherwise I wouldn't have posted here.

However, thanks for trying to help me.

I'll repeat the question so that someone new will not have to dig through the whole post get getout what I'm asking ;-):

Does anybody know a way to import a self-made certificate in a way so that the security-dialog is not displayed or the self-made certificate is at least displayed as valid and trustworth?

Thank you in advance, lg Clemens

linuxhippya at 2007-7-14 19:05:18 >

Security

Signed Applets

Java programming resources: FAQs, tutorials, compiler and browser download sites, documentation, books lists, IDEs, etc.

Howto export/import certificates?

Security New Topic

Security Hot Topic

Security

All Classified