Scribd Logo
Upload

Welcome to Scribd!

  • How To Create Self-Signed Certificate For FI Portal

    Uploaded by

    Christian Cutaran
    9 views6 pages

    Original Title

    How to Create Self-Signed Certificate for FI Portal.docx

    Copyright

    © © All Rights Reserved

    Available Formats

    DOCX, PDF, TXT or read online from Scribd

    Did you find this document useful?

    Is this content inappropriate?

    Report this Document

    Copyright:

    © All Rights Reserved
    Download as DOCX, PDF, TXT or read online from Scribd
    Flag for inappropriate content
    9 views6 pages

    How To Create Self-Signed Certificate For FI Portal

    Uploaded by

    Christian Cutaran

    Copyright:

    © All Rights Reserved
    Download as DOCX, PDF, TXT or read online from Scribd
    Flag for inappropriate content
    of 6

    INFORMATION TECHNOLOGY SUB-SECTOR

    HOW TO CREATE SELF-SIGNED


    CERTIFICATE

    INFORMATION TECHNOLOGY SUB-SECTOR

    Introduction
    In cryptography and computer security, a self-signed certificate is an
    identity certificate that is signed by the same entity whose identity it certifies. This
    term has nothing to do with the identity of the person or organization that actually
    performed the signing procedure. In technical terms a self-signed certificate is one
    signed with its own private key.

    Source : https://en.wikipedia.org/wiki/Self-signed_certificate

    INFORMATION TECHNOLOGY SUB-SECTOR


    Document Information

    Department/Office

    Information
    Application Systems Management Department

    RevisionHistory
    Date
    August 12,
    2015

    Versio
    n
    1.0

    Description

    Author
    Dubene Levy S.
    Pulumbarit

    INFORMATION TECHNOLOGY SUB-SECTOR


    I.

    Generate key
    Using keytool bundled in Java development kit (jdk).
    1. Open command line
    2. Enter command, keytool -genkey -alias mysample -keystore
    keystore.jks storepass changeit ext san=ip:10.2.69.69,dns:mysample
    3. Answer the following questions
    a. CN Common Name
    b. OU Organizational Unit
    c. O Organization
    d. L Locality
    e. ST State
    f. C Country
    Parameters:
    -alias <alias>

    alias name of the entry to process

    -keyalg <keyalg>

    key algorithm name (not required)

    -keysize <keysize>

    key bit size (not required)

    -ext <value>

    extended attributes (not required)

    -keystore <keystore> keystore name


    -storepass <arg>

    II.

    keystore password

    Export certificate
    1. Open command line
    2. Enter command, keytool exportcert file mycert.cert -alias mysample
    -keystore keystore.jks storepass changeit
    Parameters:
    -file <filename>

    output file name

    INFORMATION TECHNOLOGY SUB-SECTOR


    III.

    Import certificate
    1. Open command line
    2. Enter command, keytool importcert file mycert.cert -alias mysample
    -keystore keystore.jks storepass changeit
    3. Answer the prompt
    Parameters:
    -file <filename>

    IV.

    input file name

    Configure Application Server


    1. Open administration of the application server
    2. Navigate in the menu Configuration -> server-config -> Network Config
    -> Network Listener -> http-listener2
    3. Select SSL tab
    4. Enter the Common Name that was used in the step Generate Key
    5. Enter the key store and trust store

    Note:
    * Glassfish Application Server was used in the example
    * http-listener2 responsible for listening for https request

    INFORMATION TECHNOLOGY SUB-SECTOR

    You might also like