GoDaddy SSL证书密钥库安装Tomcat7 [英] GoDaddy SSL Certificate Keystore Installation Tomcat7

问题描述

我最近为我的网站购买了一个SSL证书，并在生成密钥库时遇到了一些奇怪的事情.在 Godaddy教程中，它表示要导入根证书，安装中间证书，并将颁发的证书安装到密钥库中.

I recently bought ann SSL certificate for my website and came across something weird when generating the keystore. In the Godaddy Tutorial it says to import the root certificate, install the intermediate certificate and install the issued certificate into the keystore.

从GoDaddy下载文件时，尽管它提供了三个.crt文件.一个具有十六进制名称，即实际的证书，另外两个具有文件名称:gdig2.crt和gd_bundle-g2-g1.crt.

When downloading the files from GoDaddy though it gives me three .crt files. One having a hex name which is the actual certificate and two others files name: gdig2.crt and gd_bundle-g2-g1.crt.

我应该如何使用这些文件的导入方式?

How am I suppose to use import these files in the fashion that they do?

注意:当查看分发包文件时，它包含3个证书.

Note: when looking at the bundle file it contains 3 certificates.

推荐答案

您将需要拥有包含私钥(和临时证书)的现有密钥库.如果您丢失了该密码，则需要重新生成新的私钥，证书和CSR，然后将其发送到您的CA以进行替换.

You will need to have your existing keystore which contains your private key (and provisional certificate). If you've lost that, you'll need to start over again by generating a new private key, cert, and CSR,and sent it to your CA for a replacement.

然后，每次使用以下命令导入您从CA(GoDaddy)收到的证书:

Then, import the certificates you received from your CA (GoDaddy) using this command each time:

$ keytool -importcert -trustcacerts -keystore [yourstore.jks] \
    -alias [certname] < [certificate].crt

按照GoDaddy建议的顺序导入证书.您可能需要在开始之前制作密钥库的副本，以防万一您破坏了所有内容.

Import the certs in the order in which GoDaddy suggested. You may want to make a copy of your keystore before you begin, just in case you break everything.

这篇关于GoDaddy SSL证书密钥库安装Tomcat7的文章就介绍到这了，希望我们推荐的答案对大家有所帮助，也希望大家多多支持IT屋！