Generate Csr For Existing Key

• Navigation
• Main Page
• Community portal
• Current events
• Recent changes
• Random page
• Help

• Generate Csr With Existing Key
• Generate Csr For Existing Key Download
• How To Generate Csr Key

Create CSR, csr, Generate CSR, ssl csr, ssl key CSR stands for ‘ Certificate Signing Request ’, that is generated on the server where the certificate will be used on. A CSR contains information about to your organization and domain name, locality, and country and a public key that will be. Generate Private Key for Existing SSL Certificate. Ask Question Asked 4 years. You can't generate a private key for an existing SSL certificate. First you generate the key pair (private + public), then you generate a CSR (containing your public key) that you forward to the CA (Comodo in this case) which will provide you with the certificate.

• Toolbox
• Page information
• Permanent link
• Printable version
• Special pages
• Related changes
• What links here

{{#eclipseproject:technology.higgins}}1. To generate a keystore, you need a JDK installed with its /bin directory in your path

2. Create a keystore using this command:

keytool will ask you to enter the values for Common Name (CN), Organizational Unit (OU), Oranization(O), Locality (L), State (S) and Country (C). CN should match the domain name of your webapp if you are planning to use this keystore for your servlet container

You can verify keystore contents using this command:

3. Generate the Certificate Signing Request (CSR) using this command:

Submit contents of csr-for-myserver.pem file to your CA for signing

You can get a trial certificate from Thawte at https://www.thawte.com/cgi/server/try.exe

4. Save the signed certificate from CA to a file signed-cert.pem

You can see the contents of the signed certificate using this command:

5. Download Root certificate from CA. You can download Thawte Test Root Certificate from http://www.thawte.com/roots/.

6. Import Root Certificate to keystore using this command:

where root-cert.pem is the Root Certificate from CA

7. Verify contents of keystore using this command:

8. Import CA signed certificate to keystore

Generate Csr With Existing Key

9. Verify contents of keystore using this command:

The most important thing you want to see is that, under the private key alias, additional information is being displayed. You're looking for this:

How to import existing .key and .crt into .jks

Assume you have an existing .key and .crt from your Apache configuration.

You do this:

Generate Csr For Existing Key Download

1. You convert the private key into PKCS#8 format:

2. Since the stupid Java keytool doesn't allow you to import private keys, you download this tool:

3. Now you can import the key into the Java Keystore:

4. Now you have the Java Keystore:

How To Generate Csr Key

5. Delete the tmpfile:

Links

Retrieved from 'https://wiki.eclipse.org/index.php?title=Generating_a_Private_Key_and_a_Keystore&oldid=126908'