On 1/16/14 9:01 AM, Miten Mehta wrote:
Hi,
I am understanding SSL for tomcat using
http://tomcat.apache.org/tomcat-6.0-doc/ssl-howto.html.
1)I create jks using self signed certificate using keytool.
2) I generate CSR from that keystore/certificate.
3) I get it signed by CA who gives me root certificate and signed
certificate.
So far, so good.
4) I need to delete the existing certificate from keystore and then import
root and signed one ?
NO! ABSOLUTELY NOT!
You import the signed certificate into THE SAME KEYSTORE, UNDER THE SAME
ALIAS, *ON TOP OF* THE UNSIGNED CERTIFICATE!
Not only will it not "complain"; it is the ONLY way to apply the CSR reply.
--
James H. H. Lampert
Touchtone Corporation
---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org
For additional commands, e-mail: users-h...@tomcat.apache.org
