If you are not using JDK 1.4 or higher, you must download and install “Java Secure Socket Extensions” JSSE.
You can download JSSE from http://java.sun.com/products/jsse/.
Use the keytool command to create the private key file:
keytool -genkey -keyalg RSA -keystore yourdomainname.key
The following questions will be asked if not known:
You will then be asked if the information is correct:
Is CN=www.yourdomain.com, OU=Your Oganizational Unit, O=Your Organization, L=Your City, ST=Your State, C=Your Country correct?
When you answer y or yes the password is then requested:
Enter key password for <mykey>
Note: Make a note of this password, <mykey> is the default alias for the certificate
Use the keytool command to create the CSR file:
keytool -certreq -keyalg RSA -keystore yourdomainname.key -file yourdomainname.csr
You will be prompted to enter your password.
If the password is correct then the CSR is created otherwise a password error message will be displayed.
You will not be prompted for the common name, organization, etc. The keytool will use the values that you specify when generating the private key.
You have now two files, the Private Key file named yourdomainname.key and Certificate Signing Request (CSR) file named yourdomainname.csr
Very nice site!
Comments are closed.