Java Key Store: Difference between revisions
Jump to navigation
Jump to search
No edit summary |
No edit summary |
||
| Line 1: | Line 1: | ||
== Manipulating Java Key Store == | |||
<syntaxhighlight lang="c"> | |||
# show trusted root ca entries with empty/blank password | |||
keytool -keystore "$JAVA_HOME/jre/lib/security/cacerts" -list | |||
# show trusted certificate entries with store password | |||
keytool -keystore "$HOME/.chorke/jks/chorke.jks" -list | |||
# change proprietary jks format to pkcs12 | |||
keytool -importkeystore -srckeystore chorke_source.jks \ | |||
-destkeystore chorke_target.jks -deststoretype pkcs12 | |||
# debugging certificate handshacking | |||
service='api.chorke.org:5443/soap/services';\ | |||
echo -e "GET / HTTP/1.0\r\n" | openssl s_client \ | |||
-connect $service -CAfile chorke_client.pem | |||
</syntaxhighlight> | |||
== References == | == References == | ||
* [https://blogs.oracle.com/jtc/installing-trusted-certificates-into-a-java-keystore Installing Trusted Certificates into a Java Keystore] | * [https://blogs.oracle.com/jtc/installing-trusted-certificates-into-a-java-keystore Installing Trusted Certificates into a Java Keystore] | ||
Revision as of 03:00, 27 February 2018
Manipulating Java Key Store
# show trusted root ca entries with empty/blank password
keytool -keystore "$JAVA_HOME/jre/lib/security/cacerts" -list
# show trusted certificate entries with store password
keytool -keystore "$HOME/.chorke/jks/chorke.jks" -list
# change proprietary jks format to pkcs12
keytool -importkeystore -srckeystore chorke_source.jks \
-destkeystore chorke_target.jks -deststoretype pkcs12
# debugging certificate handshacking
service='api.chorke.org:5443/soap/services';\
echo -e "GET / HTTP/1.0\r\n" | openssl s_client \
-connect $service -CAfile chorke_client.pem