Hi Nick,
I think the issues you are running into is that you are using a new keystore (domain.key) that Glassfish doesn't know about. Additionally, this keystore also needs to include an alias "s1as". Two options to check out below...
1. Rename the existing keystore.jks to keystore.old, then rename your domain.key keystore to keystore.jks. Make sure that the domain.key keystore includes the s1as alias, since this is used for other Glassfish services. If not, you can do a genkey in keytool to create it. Now your renamed (new) keystore will have your signed certificate and the s1as certificate in it. Restart Glassfish.
2. As mentioned abovee, make sure that domain.key includes an alias "s1as:; if not, do keytool genkey... to create it. Edit the domain.xml file in NewDomain/conf to change the keystore to domain.key. Restart Glassfish.
Hope this helps.
Regards,
Derek Sceats
-----Original Message-----
From: glassfish_at_javadesktop.org [mailto:glassfish_at_javadesktop.org]
Sent: Fri 5/29/2009 12:24 AM
To: users_at_glassfish.dev.java.net
Subject: Installing a Signed Certificate...
Hi all,
I'm fairly new to glassfish and web servers overall and would appreciate some help on this problem i've been having.
I've created a CSR and sent it out for signing with Comodo, and they sent me back 5 certificates, one of them would be the certificate i wanted signed and the rest are root, intermediary and essential certificates.
I've created a new domain using the asadmin create-domain --adminport 4848 NewDomain and started to install the certificates as indicated on the Comodo support for java web services using keytool.
keytool -import -trustcacerts -alias root -file AddTrustExternalCARoot.crt -keystore domain.key
where domain.key is the keystore.jks found under NewDomain/conf
After installing all the certificates i've used Glassfish admin on the domain to change the certificate to be used. Clicked on Configuration ? Http Service > Http Listeners > http-listener-2 > SSL ;; And changed the Certificate Nickname with alias used in CSR creation.
When i restarted i got the following error:
Alias name newdomain.com does not identify a key entry.
Could anyone please indicate the right way of doing things. I'm now kind of lost and couldn't find a post which actually helped me out...yet..
Any ideas would be greatly appreciated.
Regards
Nick
[Message sent by forum member 'nformosa' (nformosa)]
http://forums.java.net/jive/thread.jspa?messageID=348262
---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscribe_at_glassfish.dev.java.net
For additional commands, e-mail: users-help_at_glassfish.dev.java.net