[英]Unable to add Root and Intermediate Certificate to Keystore
I have problems with appending the root and intermediate certificate to my SSL certificate.我在将根证书和中间证书附加到我的 SSL 证书时遇到问题。 Please see below the steps.
请看下面的步骤。
The above steps works perfectly fine.上述步骤工作得很好。 Now, since my application requires the signed certificate in a different keystore cacerts , I imported the signed certificate.
现在,由于我的应用程序需要不同密钥库cacerts中的签名证书,我导入了签名证书。 But now I don't get option to append the intermediate and root certificate.
但现在我没有选择 append 中间证书和根证书。 Because of this I get the below error,
因此,我收到以下错误,
sun.security.validator.ValidatorException: PKIX path building failed: sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested target
sun.security.validator.ValidatorException:PKIX 路径构建失败:sun.security.provider.certpath.SunCertPathBuilderException:无法找到请求目标的有效证书路径
I understand that since the certificate request was created in a different keystore, the append option is not available.我了解,由于证书请求是在不同的密钥库中创建的,因此 append 选项不可用。 But how do I import the root and intermediate certificate in this case?
但是在这种情况下如何导入根证书和中间证书?
I have checked many blogs but couldn't make it work.我检查了许多博客,但无法使其正常工作。 If someone has knowledge on how to fix, please suggest.
如果有人知道如何修复,请提出建议。
Thanks!谢谢!
Hi i usually generated the root CA with openssl and never worked importing that into the cacerts with keytools.嗨,我通常使用 openssl 生成根 CA,但从未使用 keytools 将其导入到 cacerts 中。 You can instead generate it with this application i made out of desperation (it's a Java 11 app):
您可以使用我出于绝望而制作的这个应用程序来生成它(它是一个 Java 11 应用程序):
https://github.com/kendarorg/JavaCaCertGenerator https://github.com/kendarorg/JavaCaCertGenerator
Its only purpose is to replace the generation of the private key and the root certificate, in a form "fit" for cacerts.它的唯一目的是以“适合”cacerts 的形式替换私钥和根证书的生成。 From there you can produce the various certificates for the addresses and import the root CA inside the default cacert
从那里您可以为地址生成各种证书并在默认 cacert 中导入根 CA
声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.