Need to use existing Wildcard Cert, that I did not create.

Posted on 2012-08-29
Medium Priority
Last Modified: 2012-11-29
First, this is my first time setting this up.

1) A previous person, bought a wildcard certificate from godaddy. I am pretty sure I have the complete zip file and components from godaddy.
2) Installing a new application server, Tomcat, and need to use that already purchased  wildcard cert.
3) All the directions that I see of course say make a csr, submit it, get it back, and install it.
4) All the directions refer to the alias almost every step.

I have no idea what alias was used.  So how can I use my existing set of crt's to load up my keystore, if I don't know what the alias that was used in the creation of these files from godaddy.

These are my files from godaddy.

Question by:bigmoriver
  • 4
  • 3

Author Comment

ID: 38346460
[root@lum5pprd certs]# keytool -import -alias tomcat -keystore $CP_ROOT/.keystore -trustcacerts -file _.davenport.edu.crt
Enter keystore password:
keytool error: java.lang.Exception: Public keys in reply and keystore don't match

All examples I ever see is that it goes back to tomcat for the alias when installing my issued certificate. Should I care what my alias is and just put in a different one?

Author Comment

ID: 38346512
Sorry to answer your question. Yes I have seen it, I can do the prior steps, last one gets me. So my question is should I care that the alias is different. I can import with a different alias.
Who's Defending Your Organization from Threats?

Protecting against advanced threats requires an IT dream team – a well-oiled machine of people and solutions working together to defend your organization. Download our resource kit today to learn more about the tools you need to build you IT Dream Team!

LVL 26

Expert Comment

ID: 38347568

Guessing you already have a certificate in the store for alias "tomcat", check via:

keytool -list -v -alias tomcat -keystore $CP_ROOT/.keystore 

Open in new window

If there is export, delete then import the new cert e.g.

keytool -export -alias tomcat -keystore $CP_ROOT/.keystore -file tomcat_alias_old.cer
keytool -delete -alias tomcat -keystore $CP_ROOT/.keystore 
keytool -import -alias tomcat -keystore $CP_ROOT/.keystore -trustcacerts -file _.davenport.edu.crt

Open in new window


Author Comment

ID: 38349448
Ok. So basically alias has no real value other than a name
LVL 26

Accepted Solution

arober11 earned 2000 total points
ID: 38357108
Essentially yes, it's the label your app will use to bind the certificate.

Author Closing Comment

ID: 38644291
arober11 stuck with me and did excellent

Featured Post

Keep up with what's happening at Experts Exchange!

Sign up to receive Decoded, a new monthly digest with product updates, feature release info, continuing education opportunities, and more.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Since pre-biblical times, humans have sought ways to keep secrets, and share the secrets selectively.  This article explores the ways PHP can be used to hide and encrypt information.
Good news! Plesk 12.5 (with update #28 and above) now includes support for HTTP/2. This is a major update to HTTP1.1, which is over 15 years old. Read below to learn how to enable HTTP/2 on your Media Temple DV with Plesk.
Exchange organizations may use the Journaling Agent of the Transport Service to archive messages going through Exchange. However, if the Transport Service is integrated with some email content management application (such as an anti-spam), the admin…
With just a little bit of  SQL and VBA, many doors open to cool things like synchronize a list box to display data relevant to other information on a form.  If you have never written code or looked at an SQL statement before, no problem! ...  give i…

621 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question