Subodh Joshi
Reputation: 13482
openssl/keytool error: java.lang.Exception: Input not an X.509 certificate
I have created certificate through Openssl
Openssl req -x509 -nodes -days 365 -newkey rsa:2048 -keyout tls.key -out tls.crt -subj "/CN=nginxsvc/O=nginxsvc"
and then created a PKCS#12 file using OpenSSL:
openssl pkcs12 -export -in tls.crt -inkey tls.key -out tls.p12
and after that convert it to JKS using
keytool -importkeystore -srckeystore tls.p12 -srcstoretype PKCS12 -destkeystore tls.jks -deststoretype JKS
now when importing this jks file through keytool like this
keytool -import -noprompt -trustcacerts -alias "nginxsvc" -file tls.jks -keystore "C:\Program Files\Java\jdk1.8.0_152\jre\lib\security\cacerts"
I am getting
keytool error: java.lang.Exception: Input not an X.509 certificate
Upvotes: 1
Views: 12033
Answers (1)
Eugène Adell
Reputation: 3174
The -import needs a certificate file, not a JKS.
Try :
keytool -import -noprompt -trustcacerts -alias "nginxsvc" -file tls.crt -keystore "C:\Program Files\Java\jdk1.8.0_152\jre\lib\security\cacerts"
Upvotes: 2
Related Questions
- keytool error: java.lang.Exception: Certificate reply and certificate in keystore are identical
- How to resolve keytool error: java.lang.Exception: Input not an X.509 certificate
- keytool keytool error: java.lang.Exception: Input not an X.509 certificate
- Keytool unable to import certificate
- keytool error: java.lang.Exception: Input not an X.509 certificate
- SSL Exception: javax.net.ssl.SSLHandshakeException: Received fatal alert: certificate_unknown
- Java keytool error: java.lang.Exception: Input not an X.509 certificate
- java.lang.Exception: Input not an X.509 certificate :keytool error
- Keytool error: java.lang.Exception: Failed to parse input
- SSLException Bad Certificate