...
This section discusses the process to generate of generating a keystore file, use using it to create a Certificate Signing Request (CSR) for third party CA authorities, import importing the signed certificates back into the keystore, and use using it in Fiorano to create secure RESTful or Web services.
...
Open command prompt and navigate to the %JDK_HOME%/bin directory.
Info JDK8 is used in this exercise.
Enter the following command, and then press Enter.
Code Block keytool -keysize 2048 –keystore fiorano.jks –genkey –alias fiorano -keyalg RSA
Tip Use any name for keystore and alias, but they should be carefully used in the subsequent commands.
- Enter a password for thekeystore. The password used in this example is '"fioranopass'".
- Answer all the Organization details. When prompted for the First Name and Last Name, enter the fully qualified domain name (FQDN), Host Name or URL of the organization for which the certificate is applied for.
For requesting a Wildcard certificate, please add an asterisk * on the left side of the Common Name.
Example: .mydomain.com or www.mydomain.com. This secures all subdomains of the Common Name.Warning All the details provided in this step must be valid. If any of these values are invalid, CA authorities reject the CSR. In this example, fiorano.com is used as the First and Last name, as this certificate is generated to secure RESTful/webservices in fiorano.com.
...