如何使用keytool使用SHA2签名算法生成可信的自签名证书?
[英]How to generate trusted self signed certificate with SHA2 signing algorithm using keytool?
问题描述
I am trying to establish a secure connection for my application using jetty http server version 8.1.8.v20121106 with self signed certificate. 
我正在尝试使用带有自签名证书的码头http服务器版本8.1.8.v20121106为我的应用程序建立安全连接。
I am generating self signed certificate with the following command, 我正在使用以下命令生成自签名证书,
keytool -genkey -alias mykey -keyalg RSA -keysize 2048 -sigalg SHA256withRSA -validity 365 -keypass password -keystore keystore.jks -storepass password
keytool -genkey -alias mykey -keyalg RSA -keysize 2048 -siglg SHA256withRSA -validity 365 -keypass password -keystore keystore.jks -storepass password keytool -export -alias mykey -file server.cer -keystore keystore.jks -storepass password
keytool-导出-alias mykey-文件server.cer -keystore keystore.jks -storepass密码 keytool -import -alias mykey -file server.cer -keystore truststore.jks -storepass password
keytool-导入-alias mykey-文件server.cer -keystore truststore.jks -storepass密码
So, totally 3 files generate (keystore.jks,server.cer,truststore.jks) 因此,总共生成了3个文件(keystore.jks,server.cer,truststore.jks)
After the server gets started, I got the following error in my browser. 服务器启动后,我的浏览器出现以下错误。 There are issues with the site's certificate chain (net::ERR_CERT_AUTHORITY_INVALID). 网站的证书链(net :: ERR_CERT_AUTHORITY_INVALID)出现问题。
Could anyone help me to generate a trusted self signed certificate using keytool. 谁能帮助我使用keytool生成受信任的自签名证书。
Thanks in advance. 提前致谢。
1 个解决方案
解决方案1
0 已采纳 2016-08-24 05:06:30
It is the problem with java jdk. 这是Java JDK的问题。 I have verified using java 1.8 and jdk1.7.0_79 it is working fyn for me. 我已经使用Java 1.8和jdk1.7.0_79进行了验证,它对我来说是有效的。 Change your java jdk version and verify. 更改您的Java JDK版本并进行验证。 For further clarification, Please refer this link. 有关更多说明,请参考此链接。 https://bugs.eclipse.org/bugs/show_bug.cgi?id=398644 https://bugs.eclipse.org/bugs/show_bug.cgi?id=398644
声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.