I'm a "little" late with this. But, I was having the same problem.
The alias must be a (private) key entry. When you do a keytool -list -keystore litoral-keystore.jks
Keystore type: JKS
Keystore provider: SUN
Your keystore contains 3 entries
litoral-private-key, 13/09/2007, [b]PrivateKeyEntry[/b],
Certificate fingerprint (MD5): 84:65:0A:B0:D3:CC:D6:51:74:25:FA:32:A6:EF:A2:9D
litoral-cert, 13/09/2007, [b]trustedCertEntry[/b],
Certificate fingerprint (MD5): C0:BF:9C:D3:28:55:C3:95:64:72:C2:56:35:3D:01:B8
certisign-trial, 13/09/2007, [b]trustedCertEntry[/b],
Certificate fingerprint (MD5): E4:B4:3A:0E:98:E3:03:0D:2E:65:EA:1D:9D:6F:3C:EF
In this case the alias must be litoral-private-key.
To transfer the private key of one keystore to another do the follow command:
keytool -importkeystore -srckeystore litoral-keystore.jks -destkeystore domains/domain1/config/keystore.jks -srcalias litoral-private-key
After this, reestart Glassfish and use the alias that refers to the private key. But, don't forget the password of the private key must be the same of the keystore on Glassfish.
Hope this can help you.
Regards,
Felipe M Cypriano
Vitoria - ES - Brasil
[Message sent by forum member 'fmcypriano' (fmcypriano)]
http://forums.java.net/jive/thread.jspa?messageID=235392