| |
|
RSS Feed - WebSphere MQ Support
|
RSS Feed - Message Broker Support
|
  |
|
| How to import .p12 certificate in Message Broker v 8.0.0.2 |
« View previous topic :: View next topic » |
| Author |
Message
|
| RamBhavani |
 Posted: Sun Oct 05, 2014 11:51 pm Post subject: How to import .p12 certificate in Message Broker v 8.0.0.2 |
 |
|
Newbie
Joined: 05 Oct 2014
Posts: 5
|
Hi,
I am using WMB V8.0.0.2 and have requirement to invoke the webservice over HTTPS. The webservice provider provided .p12 certificate.
I have to configure the .p12 certificate in my broker to be able to call the service.
I tried importing the cert using keytool command but got the following exception:
keytool error: java.lang.Exception: Input not an X.509 certificate
Could any one please tell me the right steps to configure the .p12 cert in broker.
Thanks,
Bhavani B R |
|
| Back to top |
|
 |
| smdavies99 |
| Posted: Sun Oct 05, 2014 11:57 pm Post subject: |
|
|
Jedi Council
Joined: 10 Feb 2003
Posts: 6076
Location: Somewhere over the Rainbow this side of Never-never land.
|
Have you searched for 'p12 certificate file' on the internet?
There are tips on opening the file available.
_________________
WMQ User since 1999
MQSI/WBI/WMB/'Thingy' User since 2002
Linux user since 1995
Every time you reinvent the wheel the more square it gets (anon). If in doubt think and investigate before you ask silly questions. |
|
| Back to top |
|
|
| RamBhavani |
| Posted: Tue Oct 07, 2014 7:23 am Post subject: |
|
|
Newbie
Joined: 05 Oct 2014
Posts: 5
|
Hi,
Yes. The issued certificate was expired. But, have got a new renewed certificate now.
But, when I make a https call form Broker I get the below error:
com.ibm.jsse2.util.j: PKIX path building failed: java.security.cert.CertPathBuilderException: PKIXCertPathBuilderImpl could not build a valid CertPath.; internal cause is:
java.security.cert.CertPathValidatorException: The certificate issued by CN=XX Root Certificate Authority is not trusted; internal cause is:
java.security.cert.CertPathValidatorException: Certificate chaining error
So, I tried to import the certificate to the existing key store using the following command:
keytool -import -trustcacerts -alias root -file "XXX.p12" -storepass XXX -keystore "XXX.jks" -alias devvm01
But, now am getting the below error:
keytool error (likely untranslated): java.security.cert.CertificateException: Fail to parse input stream
Could anyone please help me.
Thanks and Regards,
Bhavani B R |
|
| Back to top |
|
|
| JosephGramig |
| Posted: Tue Oct 07, 2014 8:59 am Post subject: |
|
|
Grand Master
Joined: 09 Feb 2006
Posts: 1244
Location: Gold Coast of Florida, USA
|
If this is broker, then why wouldn't you use runmqckm or runmqakm to manipulate key/trust stores?
If this is on Windows, the iKeyMan tool will make this easy. |
|
| Back to top |
|
|
|
|
|
| |
|
Page 1 of 1 |
|
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum
|
|
|
|
