Import Public key of JKS to Pem and vice-versa
Question
I have a Java Server Which understands .jks format and client which understand .pem . I have generate Server key-pair using keytool and Client key-pair using openssl but for mutual authentication how do I import client's public key into server's JKS and Server Public key into client .pem file.
1 answers
solution1
0 2012-06-18 08:20:14
Most recent versions of keytool understand PEM. So in those cases one uses
keytool -importcert ...
and assuming that you've already imported the cert you've signed the client cert with (as a trustcacert) you should be good. Otherwise also import that with the -trustcacert (or if it is iselfsigned - add that flag to the import).
If you are on an older java, say on RHEL, then you need to convert it to DER format first. Conversion is done with:
openssl x509 -in client.pem -out client.der -outform DER
openssl x509 -in client.pem -out client.net -outform NET
And that should be it. On the client side - one generally does not import the server cert into the client cert - but imports these separately into your application. So to answer that one would need to know what your client application is.
The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.