James,

On 19.1.2012 1:41, James Lampert wrote:
secondary, Jan 18, 2012, trustedCertEntry,
Certificate fingerprint (MD5):
EB:A3:71:66:38:5E:3E:F4:24:64:ED:97:52:E9:9F:1B
wintouch, Jan 18, 2012, trustedCertEntry,
Certificate fingerprint (MD5):
55:D7:4D:D4:83:01:D6:E0:EB:A4:F3:9A:06:BD:87:38
primary, Jan 18, 2012, trustedCertEntry,
Certificate fingerprint (MD5):
D6:6A:92:1C:83:BF:A2:AE:6F:99:5B:44:E7:C2:AB:2A

The order of the certificates listed is not important.

Assuming that "wintouch" is alias for your certificate, it seems that you imported signed certificate into brand new keystore, instead of the keystore which contains earlier generated key pair.

You must find keystore with earlier generated key pair (the one you also used to generate CSR for CA), and import all three certificates into that keystore.

Once you do that, keytool -list should return:

secondary, ... trustedCertEntry,
...
wintouch, ... PrivateCertEntry,
...
primary, ... trustedCertEntry,
...


It should say "PrivateKeyEntry" next to "wintouch".

-Ognjen


---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org
For additional commands, e-mail: users-h...@tomcat.apache.org

Reply via email to