Keytool , Openssl, SSLPOKE

I was playing keystore and keytool today to add certifcate.

  1. Openssl command to export certifcate from remote url and save to pubcert.crt  : openssl s_client -connect  <domain>:443 -showcerts < /dev/null | sed -ne ā€œ/-BEGIN CERTIFICATE-/,/-END CERTIFICATE-/pā€ > /tmp/pubcert.crt
  2. keytool -import -trustcacerts -alias <aliasname> -file /tmp/pubcert.crt -keystore test.jks -storepass <passpword> -noprompt
  3. To test the connectvity using SSL poke:  java -Djavax.net.ssl.trustStore=<path of jks> SSLPoke  <domainname> 443
    Successfully connected
  4. SSL Poke Installation : https://confluence.atlassian.com/kb/unable-to-connect-to-ssl-services-due-to-pkix-path-building-failed-779355358.html

Leave a Comment

Your email address will not be published. Required fields are marked *