openssl p12 generation failing with CA bundle chain option

java ssl certificate openssl
9,026

I found (the|a) solution to this problem on this blog post. From the post:

After a bit of testing, I found that you need to make a new CAfile to be used, that combines the cacerts file from the openssl distribution and the intermediate.crt file...

...which is:

cat your-server-bundle /etc/ssl/certs/ca-certificates.crt > allcacerts.crt

...then use allcacerts.crt (or whatever you call it) as the parameter to the -CAfile option in the openssl command.

Share:
9,026

Related videos on Youtube

RTF
Author by

RTF

Updated on September 18, 2022

Comments

  • RTF
    RTF over 1 year

    I'm trying to install an SSL certificate for a Java servlet framework. I have 3 files: the private key (PEM), certificate file (PEM) and CA bundle (PEM). When I run:

    openssl pkcs12 -export -in server.crt -inkey server.key -certfile server.crt -out server.p12 -CAfile server.ca-bundle -chain

    ...in order to get the p12 file that I can use to create the Java keystore, it fails with the following error:

    Error unable to get issuer certificate getting chain.

    Elsewhere, I have successfully setup 2 apache servers using the same key, certificate and CA bundle files and there are no problems. Why might I be getting this error?

Recents

Why Is PNG file with Drop Shadow in Flutter Web App Grainy?
How to troubleshoot crashes detected by Google Play Store for Flutter app
Cupertino DateTime picker interfering with scroll behaviour
Why does awk -F work for most letters, but not for the letter "t"?
Flutter change focus color and icon color but not works
How to print and connect to printer using flutter desktop via usb?
Critical issues have been reported with the following SDK versions: com.google.android.gms:play-services-safetynet:17.0.0
Flutter Dart - get localized country name from country code
navigatorState is null when using pushNamed Navigation onGenerateRoutes of GetMaterialPage
Android Sdk manager not found- Flutter doctor error
Flutter Laravel Push Notification without using any third party like(firebase,onesignal..etc)
How to change the color of ElevatedButton when entering text in TextField

Related

Error while creating self-signed SSL certificate
Cannot import certificate into java control panel
need help Debugging SSL handshake in tomcat
OpenSSL Verify Peer (Client) Certificate in C++
SSL Handshake_failure in Java test client while connecting to server with two-way authentication
SSL certificate not accepted
How to disable certificate validation in java
SSL/TLS protocols and cipher suites with the AndroidHttpClient
SSL certificate generated with OpenSSL not working on NSS
Creating .p12 truststore with openssl