Tech Tip: When importing the signed certificate into the jetty keystore on CAPC make sure to use the correct alias

Document created by kk_sup Employee on Feb 8, 2016Last modified by SamCreek on Dec 17, 2016
Version 2Show Document
  • View in full screen mode

1. List the alias of the existing keypair in the jetty keystore:


<installDirectory>/jre/bin/keytool -list -keystore <installDirectory>/PerformanceCenter/jetty/etc/keystore -storepass <keystorePassword>




        /opt/CA/jre/bin/keytool -list -keystore /opt/CA/PerformanceCenter/jetty/etc/keystore -storepass changeit


        Keystore type: JKS
        Keystore provider: SUN


        Your keystore contains 1 entry

        myaliasname, Feb 4, 2016, PrivateKeyEntry,
        Certificate fingerprint (SHA1): AB:CD:EF:D0:A1:B2:C3:D4:E5:F6:AB:CD:EF:A1:B2:C3:D4:E5:F6:D0


    In the example above "myaliasname" would be the alias.


2. When you import the signed certificate make sure to use the alias as noted above.





        /opt/CA/jre/bin/keytool -importcert -trustcacerts -keystore keystore -storepass changeit -alias myaliasname -keypass changeit -file myaliasname.crt