Importing a Certificate to the Key Store

1. Copy the text file containing the CA issued key to the directory that contains your keystore. In our example, this is:
   'C:\Program Files\VMware\VMware View\Server\sslgateway\'
   
   
2. From the command prompt, enter the following replacing with the file name of your certificate:
   'keytool -import -keystore keys.p12 -storetype pkcs12 -keyalg "RSA" -trustcacerts -file '
   
   

   C:\Program Files\VMware\VMware View\Server\sslgateway\conf>keytool -import -keystore keys.p12 -storetype pkcs12 -keyalg "RSA" -trustcacerts -file thwat_test_key.p7

   
   
3. You will be asked to provide the password to your keystore:
   
   

   Enter keystore password: MY_PASSWORD

   
   
4. After providing the correct password, you will see an informational screen similar to the below with details about your certificate and the issuing CA:
   
   

   Top-level certificate in reply: Owner: CN=Thawte Test CA Root, OU=TEST TEST TEST, O=Thawte Certification, ST=FOR TESTING PURPOSES ONLY, C=ZA Issuer: CN=Thawte Test CA Root, OU=TEST TEST TEST, O=Thawte Certification, ST=FOR TESTING PURPOSES ONLY, C=ZA Serial number: 0 Valid from: Wed Jul 31 20:00:00 EDT 1996 until: Thu Dec 31 16:59:59 EST 2020 Certificate fingerprints: MD5: 5E:E0:0E:1D:17:B7:CA:A5:7D:36:D6:02:DF:4D:26:A4 SHA1: 39:C6:9D:27:AF:DC:EB:47:D6:33:36:6A:B2:05:F1:47:A9:B4:DA:EA

   
   
5. If you used a test certificate, as we did in the example above, you will receive an additional prompt that the issuer is not trusted. Answer this question with a 'yes' or 'y':
   
   

   ... is not trusted. Install reply anyway? [no]: y

   
   
6. If everything worked, you should see a message indicating that the certificate was added to the keystore:
   
   

   Certificate reply was installed in keystore

   
   
   

Comments

Add New Search

anurdh65  - SSL certificate |13/08/2009 05:18:59 Very Nice information. My friend bought the SSL certificate from http://www.tucktail.com/ but i dont know whether it is firmware or not. Reply | Quote

thirt |22/08/2009 19:41:35 Hi anurdh65, I'm not sure what you mean by firmware. Can you elaborate a bit more for me? Thanks, Tom Reply | Quote

Rashid Iqbal  - OWA not working in vmware after configuring the ss |29/06/2010 08:53:01 I install the ssl certificate for OWA. before installing the ssl I can access the owa for email but after installing the ssl certicate and trying to access the email through https://test.abc.com/exchange. getting error: the page cannot be displayed. I am doing all this in VMWare virtual machine. kindly help me to sort out this issue. Regards, Rashid Reply | Quote

Siddharth |27/12/2011 10:57:50 Hi, Somehow I am not able to make this work Used a go daddy cert and downloaded it as a tomcat server certificate as Vmware support suggests All steps work find while importing the certificate Once security server services are restarted I see the server only listening on http://*:80 Any clues Reply | Quote

MrSanchez |02/03/2012 13:10:38 Hi, Had a problem with go daddy certs too. What you need to do is convert the PEM certificate (.crt, .cer) to PKCS#7 format as mentioned above. I used the following website www.sslshopper.com to convert. When converting there will be an option for Chain Certificate File, it says optional but had to choose my gd_intermediate.crt. Reply | Quote

MrSanchez |02/03/2012 13:29:08 Hi All, I also had a problem with the locked.properties file. Had to create it in notepad and VMware support had me add the following line: storetype=pkcs12. So my file ended up looking like this: clientHost=viewservername.com clientPort=443 clientProtocol=https keyfile=keys.p12 keypass=MY_PASS storetype=pkcs12 Hope it helps someone. Thanks to the people running this website, came in very handy. Hasta la vista! Reply | Quote

GMTX |26/04/2012 15:10:52 Just one thing to add about generating the keystore. If you want more than 1024 bit keys (and these days you do), add the -keysize parameter to the command that generates the store, for example: keytool -genkey -keyalg "RSA" -keysize 2048 -keystore keys.p12 -storetype pkcs12 -validity 360 Reply | Quote

Write comment
Name:
Email:	do not notifynotify
Website:
Title:
UBBCode:	-color-aquablackbluefuchsiagraygreenlimemaroonnavyolivepurpleredsilvertealwhiteyellow -size-tinysmallmediumlargehuge
	Please input the anti-spam code that you can read in the image.

!joomlacomment 4.0 Copyright (C) 2009 Compojoom.com . All rights reserved."