Results 1 to 3 of 3

Thread: create CA and sign a certificate to use it with Tomcat

  1. #1
    Join Date
    Dec 2007
    Beans
    9

    create CA and sign a certificate to use it with Tomcat

    Hi, I need help with this, please, I'm doing my final project degree.

    I want to create a CA to sign my certificate. This is what I do:

    1. I've created my certificate with keytool.

    2. With this certificate I've created my CSR

    3. I've created a new CA with Openssl:

    ./CA.pl -newca

    • a name
    • secret passphrase for the private key
    • more information

    4. I've rename the CSR with the name "newreq.pem" and then I've signed it.

    ./CA.pl -sign

    5. Now, I have the new certificate signed, "newcert.pem"

    6. What do I have to do for use them with Tomcat??
    I think I have to install the CA certificate and the signed certificate, but how??

    Thanks.

  2. #2
    Join Date
    Apr 2008
    Beans
    7

    Re: create CA and sign a certificate to use it with Tomcat

    If you are using tomcat 6.x

    Generate the cert / csr creation:

    http://www.digicert.com/csr-creation-tomcat.htm

    Install the generated cert into the Tomcat Keystore:

    http://www.digicert.com/ssl-certific...ion-tomcat.htm

    Hope that helps.

  3. #3
    Join Date
    Aug 2008
    Location
    Wilmington, DE, USA
    Beans
    13

    Re: create CA and sign a certificate to use it with Tomcat

    I had originally bumped into some problems getting SSL installed in Tomcat. I think basically what you'll need to do is convert the .pem file into a .p12 file. I've written up the steps I took to get it running. It was originally done for Windows (ugh), but we've since moved it over to Ubuntu with no problems, I hope you might find it helpful:

    http://blog.datajelly.com/2007/06/ad...to-tomcat.html

Bookmarks

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •