Re: Java JDK 1.4.2 Keystore
A keystore is a file protected by password , which can contain different keys and certificates. By default, the JDK comes with a keystore that contains the certificates from different Certification Authorities ' trust ' ; this keystore is :
Code:
$ JAVA_HOME / jre / lib / security / cacerts
If you know the password , you can import / export or list the contents the Java keystore with the utility keytool (In / usr/java/j2sdk1.4.1_02 , accessible directly from the command line thanks to / etc / profile.d / java.sh and / etc / java / java.conf ).
Re: Java JDK 1.4.2 Keystore
To create the key , we must define an alias (the name in full ) and a nomdustockage ( filename ). Remember the name of the alias that you specify.
Code:
keytool - genkey - keysize keyalg RSA- 2048- alias [ alias - name ]- keystore [ nomdustockage ]
Set the password file storage. Then fill in the fields:
What is the Name of your organizational unit ?
[ Unknown] : Test
What is the Name of your organization?
[Unknown ]: Your organization name
What is the Name of your City or Locality ?
[Unknown ] : Paris
What is the Name of your State or Province ?
[Unknown ] : Paris
What is the two- letter country code for this unit ?
[Unknown] : EN
Confirm ( yes or yes ):
Is CN = www.exemple.com , OU = test , O = Your Organization Name , L = Paris, ST = Paris , C = U.S. correct?
[ no ] : yes
Enter a password for this key , press ENTER to set the same as for file storage :
Enter key password for [ nomdustockage ]
The storage file is now created. You can check with :
keytool - list - keystore [ nomdustockage ]
Make a backup copy of the file storage directory created in the JDK / bin or in the current directory .
Re: Java JDK 1.4.2 Keystore
You need to import the certificate used to secure the server Web OMS in the keystore JDK software trademark. Use the application keytool Java Software as follows:
Code:
$ keytool- import -keystore -storepass changeit \
/install - dir/ bin /version- jdk/ jre / lib / security / cacerts \
- file /install - dir/ var / tsp / ca.pem
changeit corresponds to the password the keystore and version- jdk to JDK version installed on the SGD server. If you have multiple certificates in the file ca.pem, separate certificates and add them individually.
Re: Java JDK 1.4.2 Keystore
We have now to create a certificate. We can do it with the keytool command (that is contained in the repertory bin of JDK).
- genkey: parameter used to generate a certificate.
- keyalg: parameter indicating the algorithm used.
- dname: parameter gathering information of the person who created the certificate.
- alias: alias.
- keypass: password protecting the key.
- keystore: name of the keystore.
- storepass: password protecting the keystore.
Re: Java JDK 1.4.2 Keystore
You have an applet that needs to be signed for that he'll have to create a key for signing your applet will turn to your order in the keytool provided jdk sun java
Code:
Keytool - genkey - alias name of your <the clé> - keypass <passing your clé> path> - keystore - storepass ring clé> <password spends >
Then if you want your key to be recognized as trustworthy you must generate a CSR ( certificate request signé ) must be sent a certificate to be authenticated AUTHORITY.