Solved

Export SSL cert with private key from Tomcat Jakarta server

Posted on 2008-10-16
8
1,782 Views
Last Modified: 2013-12-02
I support our Windows environment, including a server running Apache Tomcat Jakarta. I purchased an SSL cert from Entrust and the vendor for that server installed the cert into the keystore on that server.

In order for ISA 2004 to bridge the SSL connection, I need to export the cert including the servers private key, then import that into the ISA server. The vendor isn't sure how to do that.

How would I export the key and cert from the web server, preferably as a .pfx file? Thank you.
Dan
0
Comment
Question by:drothbart
  • 4
  • 4
8 Comments
 
LVL 20

Expert Comment

by:edster9999
Comment Utility
Windows or Linux ?

Tomcat itself doesn't do SSL.  So you are looking in the wrong place.  You must have installed something else to handle that part.  I would take a guess at either
- an external web server (like apache or IIS)
or
- an external program like openSSL

do you remember which one ?
0
 
LVL 5

Author Comment

by:drothbart
Comment Utility
Windows server.

It is a vendor application; their documentation says they use Apache Tomcat. So I guess the answer to your question is Apache.

Thank you for helping so far!
0
 
LVL 20

Expert Comment

by:edster9999
Comment Utility
well no.... apache is a general term for a plain web server.  the real name is apache http server.  This one does SSL but as I said apache tomcat doesn't.

You still need to find out if it is in windows or in another product.

Simple way - run IE on the server.  Go to TOOLS / OPTIONS / SECURITY
(or somewhere near there - it changes every now and then in different versions of IE)
click on certificates button and look in all the tabs to saee if you see the cert.
If you do then open it and click 'save certificate as file'
0
 
LVL 5

Author Comment

by:drothbart
Comment Utility
It is running on a Windows 2003 server. Their documentation says the server runs Apache Tomcat, and said to enter that when requesting the certificate from the Certification Authority. I'm much more familiar with Microsoft products, so sorry for using the wrong terms.

Under IE, I do not have the option to export the server's private key. I can export the cert as a .cer, but not in a format that includes the private key. I need that key to allow ISA to bridge the connection.
0
IT, Stop Being Called Into Every Meeting

Highfive is so simple that setting up every meeting room takes just minutes and every employee will be able to start or join a call from any room with ease. Never be called into a meeting just to get it started again. This is how video conferencing should work!

 
LVL 20

Expert Comment

by:edster9999
Comment Utility
If the cert is in IE under certificates then you VIEW it
you select details at the top and COPY TO FILE
this starts a wizard
'yes export the private key'
next
pick cert type to export and hit next

0
 
LVL 5

Author Comment

by:drothbart
Comment Utility
I don't have the option to export the private key in the wizard.
0
 
LVL 20

Accepted Solution

by:
edster9999 earned 500 total points
Comment Utility
A different way of doing this is going back to the web site you got the key from and requesting to download it again.  You'll need the password you used and possibly a reference number sent when you were ordering.
The refernce key may look like your domain name so if you are securing www.example.com it might look like
examp003
0
 
LVL 5

Author Closing Comment

by:drothbart
Comment Utility
Thanks for trying to help. Still unsuccessful, but will resolve.
0

Featured Post

How your wiki can always stay up-to-date

Quip doubles as a “living” wiki and a project management tool that evolves with your organization. As you finish projects in Quip, the work remains, easily accessible to all team members, new and old.
- Increase transparency
- Onboard new hires faster
- Access from mobile/offline

Join & Write a Comment

Introduction As you’re probably aware the HTTP protocol offers basic / weak authentication, which in combination with the relevant configuration on your web server, provides the ability to password protect all or part of your host.  If you were not…
Hi, in this article I'm going to teach you how to run your own site, and how to let people in (without IP). I'll talk about and explain each step... :) By the way, everything in this Tutorial is completely free and legal. This article is for …
Polish reports in Access so they look terrific. Take yourself to another level. Equations, Back Color, Alternate Back Color. Write easy VBA Code. Tighten space to use less pages. Launch report from a menu, considering criteria only when it is filled…
This video explains how to create simple products associated to Magento configurable product and offers fast way of their generation with Store Manager for Magento tool.

772 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

11 Experts available now in Live!

Get 1:1 Help Now