I am running two web servers on the same Linux machine. 1) is running Apache 1.3.23 (Unix) and 2) Jakarta-Tomcat-4.1.24. I have been able to successfully import and configure a Digital Certificate from Verisign into the Apache web server. When I attempt to import the Digital Certificate into the keystore for Tomcat I receive the following error message:
keytool error: java.lang.Exception: Public keys in reply and keystore don't match Here are the steps that I have been following: To generate the original csar: # openssl req -new -nodes -keyout private.key -out public.csr # openssl rsa -in private.key -des3 -out secureprivate.key To import the file into Tomcat I did the following: # keytool -genkey -alias tomcat -keyalg RSA (This created the keystore in the home directory) # keytool -import -alias root -keystore .keystore \-trustcacerts -file /etc/httpd/ssl.crt/intermediate.crt (The chain certificate from Verisign) # keytool -import -alias tomcat -keystore .keystore -trustcacerts -file /etc/httpd/ssl.crt/server.crt Enter keystore password: changeit Is there a way to import this CAcertificate into a keystore that was generated using keytool, when the original CSR was generated using OpenSSL? -- Joseph A Rickard System Administrator Best Value Technology Inc. -- Joseph A Rickard System Administrator Best Value Technology Inc. (410)694-0757 ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List [EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]
