...
| Code Block |
|---|
|
su - serveradmin
cd /opt/jre1.6.0_12/bin/
# Create a local Certificate
keytool -genkey -alias <your_cert_alias> -keyalg RSA -keystore mywebservices.bin # Create a local Certificate |
This information depends on your company. Note that when creating a cert for a website the first and last name will be the website url.
| Code Block |
|---|
Enter keystore password: mypassword
What is your first and last name?
[Unknown]: mywebservice.myapp.mycompany.com
What is the name of your organizational unit?
[Unknown]: My Unit
What is the name of your organization?
[Unknown]: My Organization
What is the name of your City or Locality?
[Unknown]: My City
What is the name of your State or Province?
[Unknown]: My State
What is the two-letter country code for this unit?
[Unknown]: CA |
As a result, a brand new keystore file is generated. You can confirm this,
| Code Block |
|---|
|
keytool -keystore mywebservices.bin -list
Enter keystore password: ******
Keystore type: jks
Keystore provider: SUN
Your keystore contains 1 entry
mywebservices, Oct 8, 2009, keyEntry,
Certificate fingerprint (MD5): 02:70:28:DE:A6:BC:0B:5E:3C:FB:BF:B3:68:8F:0F:32 |
The results show 1 entry with the alias name mywebservices which contains a single element, a self-signed certificate which is soley there to generate the CSR.