Tech Tip: When importing the signed certificate into the jetty keystore on CAPC make sure to use the correct alias

Document created by kk_sup Employee on Feb 8, 2016Last modified by SamCreek on Dec 17, 2016
Version 2Show Document
  • View in full screen mode

1. List the alias of the existing keypair in the jetty keystore:

 

<installDirectory>/jre/bin/keytool -list -keystore <installDirectory>/PerformanceCenter/jetty/etc/keystore -storepass <keystorePassword>

 

Example:

 

        /opt/CA/jre/bin/keytool -list -keystore /opt/CA/PerformanceCenter/jetty/etc/keystore -storepass changeit

 

        Keystore type: JKS
        Keystore provider: SUN

 

        Your keystore contains 1 entry

        myaliasname, Feb 4, 2016, PrivateKeyEntry,
        Certificate fingerprint (SHA1): AB:CD:EF:D0:A1:B2:C3:D4:E5:F6:AB:CD:EF:A1:B2:C3:D4:E5:F6:D0

 

    In the example above "myaliasname" would be the alias.

 

2. When you import the signed certificate make sure to use the alias as noted above.

 

    Example:

 

 

        /opt/CA/jre/bin/keytool -importcert -trustcacerts -keystore keystore -storepass changeit -alias myaliasname -keypass changeit -file myaliasname.crt

Attachments

    Outcomes