我想用提供给我的证书(由委托)使用SSL配置JBOSS应用程序6.0.1。JBOSS应用程序SSL错误:别名不能识别密钥条目
我以.CER格式从Entrust获得三个证书(根,链&服务器证书)。
接下来我创建了一个密钥库:
1.keytool -import -alias EntrustL1C -keystore EntrustL1C.mykeystore -trustcacerts -file L1Cchain.cer 输入密钥库密码
: 重新输入新密码:加入 证书到密钥存储2.keytool -import -alias根-keystore EntrustL1C.mykeystore -trustcacerts -file L1Croot.cer 输入密钥库密码:
3#的keytool -import -alias myalias -keystore EntrustL1C .mykeystore -trustcacerts -file entrustcert.cer 输入密钥库密码:加入 证书密钥存储到
我在两个SSL部分,配置这JBOSS的standalone.xml:
在启动JBOSS应用程序时,我得到了错误。
13:08:23,311 ERROR [org.apache.coyote.http11.Http11Protocol] (MSC service thread 1-3) Error initializing endpoint: java.io.IOException: Alias name test does not
identify a key entry
at org.apache.tomcat.util.net.jsse.JSSESocketFactory.getKeyManagers(JSSESocketFactory.java:517) [jbossweb-7.0.17.Final-redhat-1.jar:]
at org.apache.tomcat.util.net.jsse.JSSESocketFactory.init(JSSESocketFactory.java:452) [jbossweb-7.0.17.Final-redhat-1.jar:]
at org.apache.tomcat.util.net.jsse.JSSESocketFactory.createSocket(JSSESocketFactory.java:168) [jbossweb-7.0.17.Final-redhat-1.jar:]
at org.apache.tomcat.util.net.JIoEndpoint.init(JIoEndpoint.java:978) [jbossweb-7.0.17.Final-redhat-1.jar:]
at org.apache.coyote.http11.Http11Protocol.init(Http11Protocol.java:190) [jbossweb-7.0.17.Final-redhat-1.jar:]
at org.apache.catalina.connector.Connector.init(Connector.java:1001) [jbossweb-7.0.17.Final-redhat-1.jar:]
at org.jboss.as.web.WebConnectorService.start(WebConnectorService.java:268) [jboss-as-web-7.1.3.Final-redhat-4.jar:7.1.3.Final-redhat-4]
at org.jboss.msc.service.ServiceControllerImpl$StartTask.startService(ServiceControllerImpl.java:1811) [jboss-msc-1.0.2.GA-redhat-2.jar:1.0.2.GA-redhat-2]
at org.jboss.msc.service.ServiceControllerImpl$StartTask.run(ServiceControllerImpl.java:1746) [jboss-msc-1.0.2.GA-redhat-2.jar:1.0.2.GA-redhat-2]
at java.util.concurrent.ThreadPoolExecutor.runWorker(ThreadPoolExecutor.java:1110) [rt.jar:1.6.0_22]
at java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:603) [rt.jar:1.6.0_22]
at java.lang.Thread.run(Thread.java:679) [rt.jar:1.6.0_22]
13:08:23,320 ERROR [org.jboss.msc.service.fail] (MSC service thread 1-3) MSC000001: Failed to start service jboss.web.connector.https:
org.jboss.msc.service.StartException in service jboss.web.connector.https: JBAS018007: Error starting web connector
at org.jboss.as.web.WebConnectorService.start(WebConnectorService.java:272)
at org.jboss.msc.service.ServiceControllerImpl$StartTask.startService(ServiceControllerImpl.java:1811) [jboss-msc-1.0.2.GA-redhat-2.jar:1.0.2.GA-redhat-2]
at org.jboss.msc.service.ServiceControllerImpl$StartTask.run(ServiceControllerImpl.java:1746) [jboss-msc-1.0.2.GA-redhat-2.jar:1.0.2.GA-redhat-2]
at java.util.concurrent.ThreadPoolExecutor.runWorker(ThreadPoolExecutor.java:1110) [rt.jar:1.6.0_22]
at java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:603) [rt.jar:1.6.0_22]
at java.lang.Thread.run(Thread.java:679) [rt.jar:1.6.0_22]
Caused by: LifecycleException: Protocol handler initialization failed: java.io.IOException: Alias name test does not identify a key entry
at org.apache.catalina.connector.Connector.init(Connector.java:1003)
at org.jboss.as.web.WebConnectorService.start(WebConnectorService.java:268)
... 5 more
然后我做了一个密钥工具-list -v -keystore EntrustL1C.mykeystore,并注意到,该别名是大家都在小写。
我想知道如果我在配置JBOOS应用程序时发生了一些根本性错误,或者应该这样做,我只是在做一个愚蠢的粗心错误?
任何指导将不胜感激。
@ Pierre.Vriens XML下面的代码是不可见的,因为误格式化 –
的上述只是一个示例条目。不要直接使用。您需要根据需要修改您的XML –