This page is the form of quick notes and needs to be rewritten as an article.
Create Local Certificate
In this example we are generating a key called <your_cert_alias> and storing it in a brand new keystore called mywebservices.bin.
su - serveradmin cd /opt/jre1.6.0_12/bin/ # Create a local Certificate keytool -genkey -alias <your_cert_alias> -keyalg RSA -keystore mywebservices.bin
This information depends on your company. Note that when creating a cert for a website the first and last name will be the website url.
Enter keystore password: mypassword What is your first and last name? [Unknown]: mywebservice.myapp.mycompany.com What is the name of your organizational unit? [Unknown]: My Unit What is the name of your organization? [Unknown]: My Organization What is the name of your City or Locality? [Unknown]: My City What is the name of your State or Province? [Unknown]: My State What is the two-letter country code for this unit? [Unknown]: CA
As a result, a brand new keystore file is generated. You can confirm this,
keytool -keystore mywebservices.bin -list Enter keystore password: ****** Keystore type: jks Keystore provider: SUN Your keystore contains 1 entry mywebservices, Oct 8, 2009, keyEntry, Certificate fingerprint (MD5): 02:70:28:DE:A6:BC:0B:5E:3C:FB:BF:B3:68:8F:0F:32
The results show 1 entry with the alias name mywebservices which contains a single element, a self-signed certificate which is soley there to generate the CSR.