keystore
This is an old version of the document!
Java Keystore Key Management
Die SSL-Zertifikate werden in Containderdateien (keystore) gespeichert. Diese Container können mehrere Schlüssel und Zertifikate enthalten.
The keystore is managed using the keytool .
Create key
Example of the dialog for creating a key
# keytool -keyalg RSA -genkey -alias BennoMailArchive -keystore /etc/benno/bennokeystore.jks Enter keystore password: Re-enter new password: What is your first and last name? [Unknown]: Benno MailArchive What is the name of your organizational unit? [Unknown]: IT What is the name of your organization? [Unknown]: LWsystems What is the name of your City or Locality? [Unknown]: Bad Iburg What is the name of your State or Province? [Unknown]: Lower Saxony What is the two-letter country code for this unit? [Unknown]: DE Is CN=Benno MailArchive, OU=IT, O=LWsystems, L=Bad Iburg, ST=Niedersachsen, C=DE correct? [no]: yes Enter key password for<BennoMailArchiv> (RETURN if same as keystore password): Re-enter new password:
Die Keystore-Datei (hier /etc/benno/bennokeystore.jks) wird anschließend für den User „benno“ und die gleichnamige Gruppe lesbar gemacht.
chown benno.benno bennokeystore.jks chmod 0440 bennokeystore.jks
List keys
keytool -keystore /etc/benno/bennokeystore.jks -list -v
keystore.1563527882.txt.gz · Zuletzt geändert: 2019/07/19 09:18 von lwsystems
Page Tools
