users@glassfish.java.net

PWC5330: Alias name serveralias does not identify a key entry

From: Legolas Woodland <legolas.w_at_gmail.com>
Date: Wed, 4 Apr 2007 10:16:06 +0330

Hi
Thank you for reading my post.
I am trying to import a cert into keystore and another cert into cacerts of
glassfish.

-run the application server, enable the ssl and give a nickname like
serveralias
-execute some commands to import keys into stores like :

\domains\d6>keytool -import -keypass adminadmin -storepass changeit -file
E:\certs\server.der -alias serveralias -keystore keystore.jks

and another command to import caCert like :
\domains\d6>keytool -import -keypass adminadmin -storepass changeit -file
E:\certs\ca.der -alias serveralias -keystore cacerts.jks



I should say that i have singed the server.der using cacert.
What i want to do is:






Now when i run try to start the application server it return something like:


CORE5071: An error occured during initialization
com.sun.appserv.server.ServerLifecycleException: WEB0105: An error occurred
while starting the web container
        at com.sun.enterprise.web.PEWebContainer.startInstance(
PEWebContainer.java:751)
        at com.sun.enterprise.web.PEWebContainerLifecycle.onStartup(
PEWebContainerLifecycle.java:71)
        at com.sun.enterprise.server.ApplicationServer.onStartup(
ApplicationServer.java:332)
        at com.sun.enterprise.server.ondemand.OnDemandServer.onStartup(
OnDemandServer.java:112)
        at com.sun.enterprise.server.PEMain.run(PEMain.java:326)
        at com.sun.enterprise.server.PEMain.main(PEMain.java:260)
        at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
        at sun.reflect.NativeMethodAccessorImpl.invoke(
NativeMethodAccessorImpl.java:39)
        at sun.reflect.DelegatingMethodAccessorImpl.invoke(
DelegatingMethodAccessorImpl.java:25)
        at java.lang.reflect.Method.invoke(Method.java:585)
        at com.sun.enterprise.server.PELaunch.main(PELaunch.java:272)
Caused by: LifecycleException: PWC3985: Protocol handler initialization
failed: java.io.IOException: PWC5330: Alias name serveralias does not
identify a key entry
        at org.apache.coyote.tomcat5.CoyoteConnector.initialize(
CoyoteConnector.java:1592)
        at
com.sun.enterprise.web.connector.coyote.PECoyoteConnector.initialize(
PECoyoteConnector.java:760)
        at org.apache.catalina.startup.Embedded.start(Embedded.java:921)
        at com.sun.enterprise.web.WebContainer.start(WebContainer.java:853)
        at com.sun.enterprise.web.PEWebContainer.startInstance(
PEWebContainer.java:742)
        ... 10 more





Can you tell me what is wrong?


Make sure that server does not respond to any one who has not a
certification signed with my own CA.
I think, if i have a cacert file containing just my own ca certification
then glassfish will only accept clients with certification signed with that
ca certification.

let me know what do you think about my procedure
© Oracle | By contributing to this project, you are agreeing to the terms of use described here.