我正在Tomcat服务器上安装SSL,并遵循发行者https://knowledge.rapidssl.com/support/ssl-certificate-support/index?page=content&actp=CROSSLINK&id=SO16181的这些指示,并且指出:
Verify the following information:
The SSL certificate is imported into the alias with the "Entry Type" of
PrivateKeyEntry or KeyEntry. If not, please import the certificate into
the Private Key alias.
导入证书(tomcat)时,我正在使用:
keytool -import -trustcacerts -alias your_alias_name -keystore your_keystore_filename
-file your_certificate_filename
但是当我这样做时,它会导入为trustCertEntry
Keystore type: JKS
Keystore provider: SUN
Your keystore contains 3 entries
primaryca, Jul 26, 2014, trustedCertEntry,
Certificate fingerprint (SHA1): <snip>
tomcat, Jul 26, 2014, trustedCertEntry,
Certificate fingerprint (SHA1): <snip>
secondaryca, Jul 26, 2014, trustedCertEntry,
Certificate fingerprint (SHA1): <snip>
如何使别名tomcat导入为PrivateKeyEntry?
最佳答案
摆脱-trustcacerts选项。这不是CA证书。这是您的证书。并使用私钥已具有的相同别名。
关于ssl - 导入证书作为PrivateKeyEntry,我们在Stack Overflow上找到一个类似的问题:https://stackoverflow.com/questions/25768306/