Link to home
Start Free TrialLog in
Avatar of drothbart
drothbartFlag for United States of America

asked on

Export SSL cert with private key from Tomcat Jakarta server

I support our Windows environment, including a server running Apache Tomcat Jakarta. I purchased an SSL cert from Entrust and the vendor for that server installed the cert into the keystore on that server.

In order for ISA 2004 to bridge the SSL connection, I need to export the cert including the servers private key, then import that into the ISA server. The vendor isn't sure how to do that.

How would I export the key and cert from the web server, preferably as a .pfx file? Thank you.
Dan
Avatar of edster9999
edster9999
Flag of Ireland image

Windows or Linux ?

Tomcat itself doesn't do SSL.  So you are looking in the wrong place.  You must have installed something else to handle that part.  I would take a guess at either
- an external web server (like apache or IIS)
or
- an external program like openSSL

do you remember which one ?
Avatar of drothbart

ASKER

Windows server.

It is a vendor application; their documentation says they use Apache Tomcat. So I guess the answer to your question is Apache.

Thank you for helping so far!
well no.... apache is a general term for a plain web server.  the real name is apache http server.  This one does SSL but as I said apache tomcat doesn't.

You still need to find out if it is in windows or in another product.

Simple way - run IE on the server.  Go to TOOLS / OPTIONS / SECURITY
(or somewhere near there - it changes every now and then in different versions of IE)
click on certificates button and look in all the tabs to saee if you see the cert.
If you do then open it and click 'save certificate as file'
It is running on a Windows 2003 server. Their documentation says the server runs Apache Tomcat, and said to enter that when requesting the certificate from the Certification Authority. I'm much more familiar with Microsoft products, so sorry for using the wrong terms.

Under IE, I do not have the option to export the server's private key. I can export the cert as a .cer, but not in a format that includes the private key. I need that key to allow ISA to bridge the connection.
If the cert is in IE under certificates then you VIEW it
you select details at the top and COPY TO FILE
this starts a wizard
'yes export the private key'
next
pick cert type to export and hit next

I don't have the option to export the private key in the wizard.
ASKER CERTIFIED SOLUTION
Avatar of edster9999
edster9999
Flag of Ireland image

Link to home
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Start Free Trial
Thanks for trying to help. Still unsuccessful, but will resolve.