You can use a certificate from a certificate authority (CA) to configure SSL
communication for JBoss.
Procedure
To obtain a certificate from a certificate authority:
- Generate a certificate request by entering the following command:
keytool -certreq -alias "YourHostName, OU=Unknown, O=Unknown, L=Unknown, ST=Unknown,
C=Unknown" -file certRequest.txt
- Go to the certificate authority website and use the certRequest.txt
request file to get the server certificate.
- Save the server certificate in the same folder as the keystore that you created. For example, save the certificate file as the
JBOSS_HOME/server/server_name/conf/certnew.p7b
file.
- Import the certificate to your keystore by entering the following command:
keytool -import -alias cpe-alias-ca -keystore server.keystore
-storepass YourStorePassword -file certnew.p7b
- Verify that the certificate was imported to the keystore by entering the following
command:
keytool -list -v -keystore server.keystore -storepass YourStorePassword