stackoom
  简体   繁体   中英

Export certificate from MAC KeyChain access and create keystore,truststore

 原文  2013-03-20 07:38:17       java/ macos/ security/ ssl

Question

Thanks in advance , Can any one explain how to export a certificate from MAC KeyChain access and create keystore , truststore.

I tried the following steps but it failed.

  • TLS certificate has been created in Apple keychain access .
  • Then i exported the certificate and public key from keychain access as Certificate.p12 and Key.p12 with corresponding password.

And followed the below steps to generate keystore , truststore.

  • convert the private key file from PKCS#12 format to PEM format: $ openssl pkcs12 -in Key.p12 -out Key.pem
  • when prompt type the related password (P1): Enter Import Password: MAC verified OK

  • choose a password for the new file (Key.pem) Enter PEM pass phrase: Verifying - Enter PEM pass phrase:

  • convert the certificate file from PKCS#12 format to PEM format: $ openssl pkcs12 -in Certificate.p12 -out Certificate.pem

  • when prompt type the related password (P2): Enter Import Password: MAC verified OK
  • choose a password for the new file (Certificate.pem) Enter PEM pass phrase: Verifying - Enter PEM pass phrase: openssl pkcs8 -topk8 -nocrypt -in Key.pem -inform PEM -out Key.der -outform DER openssl x509 -in Certificate.pem -inform PEM -out Certificate.der -outform DER

Ref link of ImportKey.java: [Imortkey.java|http://www.agentbob.info/agentbob/79-AB.html]

user@host:~$ java ImportKey Key.der Certificate.der Using keystore-file : /home/user/keystore.ImportKey One certificate, no chain. Key and certificate stored. Alias:vuiis Password:secret

cp keystore.ImportKey keystore.jks

keytool -export -file keystore.cert -keystore keystore.jks -alias vuiis keytool -import -file keystore.cert -keystore trust.jks -alias vuiis

Finally i used keystore.jks as keystore and trust.jks as keytrust. But the connection was not successful.

My requirement is to establish TLS Connection between OSIRIX(MAC Keychain access) and DCM4CHEE (java keystore , truststore )

Any one can explain what i am doing wrong.

1 answers

solution1
 0  2013-05-28 21:55:43

尝试将-trustcacerts开关添加到您的信任库的导入中。

暂无
暂无

The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.

Related Question How do I create truststore and keystore from the signed certificate? How to create keystore and truststore using self-signed certificate? Which key and certificate from keystore and truststore is used when there are many? How to create keystore and truststore for Java from a PKCS12 file? Create truststore for StartSSL Certificate Programmatically add a self-signed certificate to your keystore/truststore Delete Certificate from Truststore programmatical KeyStore and TrustStore load failed - Private key must be accompanied by certificate chain In Java: How to handshake a secured connection using Keystore and Truststore certificate? How to manage certificate, truststore and keystore key files in a Java project
Related Tags
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM