Hello, maybe you have several keys in your keystore file. You can e.g. use https://code.google.com/archive/p/keytool-iui/ to take an easy look into your keystore file. You can delete the old one or use the connector attribute certificateKeyAlias to tell tomcat which key to use. The keys can be imported with an alias which must match the attribute.
I personally prefer pfx format instead of java keystore. There is no need for an import and easier to handle. In order to use pfx you need to set the attribute keystoreType=pkcs12 Pfx holds the private key and the public certificate. If this doesn’t help, please tell the tomcat version as the configuration depends on the version. Also the connector snippet is helpful (hide the password). Greetings, Thomas > -----Ursprüngliche Nachricht----- > Von: thulasiram k <ktr...@gmail.com> > Gesendet: Sonntag, 13. November 2022 16:53 > An: Tomcat Users List <users@tomcat.apache.org> > Betreff: Alias name [server] does not identify a key entry + tomcat SSL > > Hi Team, > > I am trying to renew my existing certificate. when I import the new cert it > has > imported successfully and I can view that in the listing as well. > > But when I restart my tomcat I am getting the below error and application is > not accessible with https. > > Error: > Caused by: java.lang.IllegalArgumentException: Alias name [server] does not > identify a key entry at > org.apache.tomcat.util.net.AbstractJsseEndpoint.createSSLContext(AbstractJsse > Endpoint.java:115) > at > org.apache.tomcat.util.net.AbstractJsseEndpoint.initialiseSsl(AbstractJsseEndpoi > nt.java:86) > at org.apache.tomcat.util.net.NioEndpoint.bind(NioEndpoint.java:244) > at > org.apache.tomcat.util.net.AbstractEndpoint.init(AbstractEndpoint.java:1087) > at > org.apache.tomcat.util.net.AbstractJsseEndpoint.init(AbstractJsseEndpoint.java: > 265) > at org.apache.coyote.AbstractProtocol.init(AbstractProtocol.java:581) > at > org.apache.coyote.http11.AbstractHttp11Protocol.init(AbstractHttp11Protocol.j > ava:68) > at org.apache.catalina.connector.Connector.initInternal(Connector.java:993) > ... 13 more > Caused by: java.io.IOException: Alias name [server] does not identify a key > entry at > org.apache.tomcat.util.net.jsse.JSSEUtil.getKeyManagers(JSSEUtil.java:229) > at > org.apache.tomcat.util.net.openssl.OpenSSLUtil.getKeyManagers(OpenSSLUtil.j > ava:79) > at > org.apache.tomcat.util.net.AbstractJsseEndpoint.createSSLContext(AbstractJsse > Endpoint.java:113) > ... 20 more > > I tried exporting with a private key and configuring the keystoreType="PKCS12" > but still no luck. Please help me with this issue if any one has faced a > similar > situation. > > Thanks > Ram --------------------------------------------------------------------- To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org
