| Expand | ||
|---|---|---|
| ||
|
Generating a Keystore
Open command prompt and navigate to %JDK_HOME%/bin directory.
Note JDK8 is used in this exercise.
Enter the following command, and then press Enter:
Code Block keytool -keysize 2048 –keystore fiorano.jks –genkey –alias fiorano -keyalg RSA
- Enter a password for the keystore. The password used in this example is ' fioranopass'.
Answer all the questions pertaining to the Organization. When prompted for the First Name and Last Name, enter the fully qualified domain name (FQDN), Host Name or URL to the certificate needs to be applied.
Tip When requesting a Wildcard certificate, please add an asterisk * on the left side of the Common Name.
Example: .mydomain.com or www.mydomain.com. This secures all subdomains of the Common Name.
Note Organization details entered must be valid. If any of these values are found invalid, CA authorities reject the Certificate Signing Request (CSR).
...
CA authorities will send a signed certificate, intermediate certificate and root certificate. Import all such certificates into fiorano.jks keystore file.
| Note |
|---|
The intermediate and root certificate should have different alias names, but the signed certificate should be imported with the same alias that was used while creating a certificate pair in "Generating a Keystore" section. Download your certificate files from your certificate authority and save them to the same directory as the keystore that you created during the CSR creation process. |
...