Renew Code Signing certificate

June 2, 2005

The other day, I wrote about having trouble importing a thawte certificate back into the keystore. No matter what the certificate refused to add it self to the store - or if it was added the jarsigner refused to recognize it. The only solution seems to be to get a reissue.

Thse are the exact steps:

First create a new keystore. Creating a new key in an empty keystore does the trick.

keytool -keystore radinks.store -genkey -alias radinks -keyalg RSA

Make sure that you generate an rsa key. Now put a copy of this keyfile on your USB drive for safe keeping. Then generate CSR - certificate signing request.

keytool -certreq -keystore radinks.store -alias radinks

Now this is the csr that you should send to Thawte (or Verisign for that matter). You will need to ask for a reissue and not a renewal. Thawte is generous enough to offer reissues free of charge. For a resissue the credentials on the certificate must match those for the original issue and the orginal certificate must still be valid.

Once the certificate is issued you can import it back into the keystore.

keytool -import -trustcacerts -keystore radinks.store -alias radinks -file radinks.pkcs

That's it.

Posted by raditha at June 2, 2005 2:10 AM
Your Ad Here

 

Jabber  |  Linux  |  mySQL  |  PHP  |  Java  |  Site Map  |  Wiki

Downloads  |  About  |  Links  |  Contact  |  Home

 

Copyright © Raditha Dissanayake 2003 - 2007

Terms of Use  |  Privacy

 

 

June 2005
Sun Mon Tue Wed Thu Fri Sat
      1 2 3 4
5 6 7 8 9 10 11
12 13 14 15 16 17 18
19 20 21 22 23 24 25
26 27 28 29 30