keytool | 易学教程

IP address as hostname (CN) when creating a certificate? (HTTPS hostname wrong: should be <ipAddress>) [duplicate]

阅读更多关于 IP address as hostname (CN) when creating a certificate? (HTTPS hostname wrong: should be ) [duplicate]

问题 This question already has an answer here : Closed 7 years ago . Possible Duplicate: How are SSL certificate server names resolved/Can I add alternative names using keytool? I created a certificate and set the CN to the IP address of my server which is in xxx.xxx.xxx.xxx format. But when I try to run my code in Java, I'm getting a HTTPS hostname wrong: should be <xxx.xxx.xxx.xx> error message. What could be wrong? I'm sure that I'm connecting to the correct IP address. However, I did not

Signing an APK with an upload key provided by Google Play

阅读更多关于 Signing an APK with an upload key provided by Google Play

问题 I'm trying to make sense of how to upload an app onto Google Play while using Google Play App Signing. Here is what I did: Created an app Used keytool.exe to generate a key for that app Uploaded the app to Google Play Enrolled in the Google Play App Signing Try to upload the app again without success. It complains that the certificate is not the certificate Upload new APK to Production Upload failed You uploaded an APK that is not signed with the upload certificate. You must use the same

How to add subject alernative name to ssl certs?

阅读更多关于 How to add subject alernative name to ssl certs?

问题 I'm using openssl to create self-signed certs. I'm getting this error with the certs I generated: javax.net.ssl.SSLHandshakeException: java.security.cert.CertificateException: No subject alternative names present Does anyone know how to specify "Subject alternative name" while creating a cert? This is how I'm generating a keystore: sudo $JAVA_HOME/bin/keytool -genkey -dname "CN=192.168.x.xxx, OU=I, O=I, L=T, ST=On, C=CA" -alias tomcat -validity 3650 -keyalg RSA -keystore /root/.keystore

I can’t find the Android keytool

阅读更多关于 I can’t find the Android keytool

问题 I am trying to follow the Android mapping tutorial and got to this part where I had to get an API key. I have found my debug.keystore but there does not appear to be a keytool application in the directory: C:\Documents and Settings\tward\\.android>ls adb_usb.ini avd debug.keystore repositories.cfg androidtool.cfg ddms.cfg default.keyset There is also no keytool in this directory: C:\Android\android-sdk-windows\tools>ls AdbWinApi.dll apkbuilder.bat etc1tool.exe mksdcard.exe AdbWinUsbApi.dll

Import certificate as PrivateKeyEntry

阅读更多关于 Import certificate as PrivateKeyEntry

问题 I am installing SSL on a Tomcat server and am following these instructions from the issuer https://knowledge.rapidssl.com/support/ssl-certificate-support/index?page=content&actp=CROSSLINK&id=SO16181 and it states: Verify the following information: The SSL certificate is imported into the alias with the "Entry Type" of PrivateKeyEntry or KeyEntry. If not, please import the certificate into the Private Key alias. When I import the certificate (tomcat) I am using: keytool -import -trustcacerts

Import certificate as PrivateKeyEntry

阅读更多关于 Import certificate as PrivateKeyEntry

ERROR:'keytool' is not recognized as an internal or external command, operable program or batch file

阅读更多关于 ERROR:'keytool' is not recognized as an internal or external command, operable program or batch file

问题 When i use the command C:\>keytool -list -alias androiddebugkey -keystore .android\debug.keystore -storepass android -keypass android I get this error: 'keytool' is not recognized as an internal or external command, operable program or batch file. I'm not able to get the certificate fingerprint(MD5) on my computer. i have ensured that the keystore file is present in the appropriate location. Any help? 回答1: Check that the directory the keytool executable is in is on your path. (For example, on

使用java生成证书

阅读更多关于使用java生成证书

使用java生成证书执行 keytool -genkeypair -alias mytest -keyalg RSA -keypass mypass -keystore mytest.jks -storepass mypass mytest 是证书的别名，两个mypass是密码，执行完成后会生成mytest.jks文件导出公钥 keytool -list -rfc --keystore mytest.jks | openssl x509 -inform pem -pubkey 需要安装openssl，安装方法这里不详细介绍；之后会将公钥打印在dos窗口。导出私钥先转格式 keytool -v -importkeystore -srckeystore mytest.jks -srcstoretype jks -srcstorepass mypass -destkeystore demo.pfx -deststoretype pkcs12 -deststorepass mypass -destkeypass mypass mytest.jks是证书名，两个mypass 是第一步的密码， demo.pfx是转格式后的文件名这时候会生成demo.pfx证书文件导出私钥 openssl pkcs12 -in demo.pfx -nocerts -nodes -out

JWT生成私钥和公钥

阅读更多关于 JWT生成私钥和公钥

JWT令牌生成采用非对称加密算法 1、生成密钥证书下边命令生成密钥证书，采用RSA 算法每个证书包含公钥和私钥 keytool -genkeypair -alias xckey -keyalg RSA -keypass xuecheng -keystore xc.keystore -storepass xuechengkeystore Keytool 是一个java提供的证书管理工具。 -alias：密钥的别名 -keyalg：使用的hash算法 -keypass：密钥的访问密码 -keystore：密钥库文件名，xc.keystore保存了生成的证书 -storepass：密钥库的访问密码查询证书信息： keytool -list -keystore xc.keystore 删除别名 keytool -delete -alias xckey -keystore xc.keystore 2、导出公钥 openssl是一个加解密工具包，这里使用openssl来导出公钥信息。配置openssl的path环境变量，本教程配置在G:\JavaSoft\openssl cmd进入xc.keystore文件所在目录执行如下命令： keytool ‐list ‐rfc ‐‐keystore xc.keystore | openssl x509 ‐inform pem ‐pubkey

配置Tomcat使用https协议

阅读更多关于配置Tomcat使用https协议

一. 创建tomcat证书这里使用JDK自带的keytool工具来生成证书 1. 在jdk的安装目录\bin\keytool.exe下打开keytool.exe 2. 在命令行中输入以下命令: keytool -genkeypair -alias "tomcat" -keyalg "RSA" -keystore "f:\tomcat.keystore" 二. 配置tomcat服务器定位到tomcat服务器的安装目录, 找到conf下的server.xml文件找到如下已经被注释的代码：去掉注释，修改为： <Connector port="8443" protocol="org.apache.coyote.http11.Http11Protocol" maxThreads="150" SSLEnabled="true" scheme="https" secure="true" clientAuth="false" sslProtocol="TLS" keystoreFile="F:\Keystore\tomcat.keystore" keystorePass="123456"/> 这里，密码和证书的位置根据个人的具体环境而设置，属性参数如下所述：属性描述 clientAuth 如果设为true，表示Tomcat要求所有的SSL客户出示安全证书，对SSL客户进行身份验证