Import Wildcard Certificate to Tomcat6
Posted on 2013-11-17
Hello to you all:
I have a wildcard certificate from RapisSSL. The CSR was created with IIS7 on Windows Server 2008 R2. I need to import this CA to tomcat6 on a Windows Server 2008 R2 server.
I received the certificate via E-Mail, and I just copy-paste it to Notepad as tomcat6.cer.
I used the following commands to import the certificate:
keytool -importcert -alias "tomcat6" -file c:\Users\tomcatadmin\Desktop\tomcat6.cer -keystore C:\JIRA\bin\cacerts
I get a response that the certificate was installed, with no errors. I can also see the certificate and its alias by running the commands:
keytool -list -v -keystore C:\JIRA\bin\cacerts
Then I restarted tomcat. However, I keep seeing the old and expired certificate on the web site.
Other things I have tried are deleting the expired certificate and re-importing the new and valid certificate:
keytool -delete -alias tomcat -keystore C:\JIRA\bin\cacerts
keytool -import -trustcacerts -alias "tomcat6" -file c:\Users\tomcatadmin\Desktop\tomcat6.cer -keystore C:\JIRA\bin\cacerts
I have also tried importing the certificate with the same alias as the expired certificate, but that gave me an error about the public and private keys not matching.
I have looked at similar problems here, but I still cannot get this to work. I wonder if importing a wildcard certificate is different than others. Also, if it makes a difference that the CSR was created in IIS7.
I hope you can help get this certificate installed and working.