Install verisign ssl certificate jboss

For example, IT or Web Administration. O : enter the official name of your company. L : specify the city where your company is located.

For example, California What is the name of your state or province? ST : enter the full name of your state where your company is located What is the two-letter country code for this unit? C : provide the two-letter code of your country. For instance, US. Here you can find the full list of country codes. Double check your information and type Y then click Enter to confirm your submission Enter the key password for your Alias. The command will then ask you for the private key password.

Press Enter. Your keystore and private key passwords are identical. The following discussion covers only those attributes of most interest when setting up SSL communication.

You can change this to any port number you wish such as to the default port for https communications, which is However, special setup outside the scope of this document is necessary to run JBoss Web on port numbers lower than on many operating systems. If you change the port number here, you should also change the value specified for the redirectPort attribute on the non-SSL connector.

This allows JBoss Web to automatically redirect users who attempt to access a page with a security constraint specifying that SSL is required, as required by the Servlet 2. There are additional options used to configure the SSL protocol. You may need to add or change the following attribute values, depending on how you configured your keystore earlier:.

The certificate encoding algorithm to be used. This defaults to the Sun implementation SunX For other vendors, consult the JVM documentation for the correct value. Set to true if you want the SSL stack to require a valid certificate chain from the client before accepting a connection. Set to want if you want the SSL stack to request a client Certificate, but not fail if one isn't presented. The pathname of the keystore file where you have stored the server certificate to be loaded.

By default, the pathname is the file ". The password used to access the server certificate from the specified keystore file. The default value is " changeit ". The type of keystore file to be used for the server certificate. If not specified, the default value is " JKS ".

The version of the SSL protocol to use. If not specified, the default is " TLS ". A comma seperated list of the encryption ciphers that may be used. If not specified, then any available cipher may be used. The alias used to for the server certificate in the keystore. If not specified the first key read in the keystore will be used. The password to access the TrustStore. This defaults to the value of keystorePass. Add this element if your are using a different format for the TrustStore then you are using for the KeyStore.

After completing these configuration changes, you must restart JBoss Web as you normally do, and you should be in business. For example, try:. If this does not work, the following section contains some troubleshooting tips. To obtain and install a Certificate from a Certificate Authority like verisign.

That CSR will be used by the Certificate Authority to create a Certificate that will identify your website as "secure". To create a CSR follow these steps:. Now you have a file called certreq. In return you get a Certificate. Now that you have your Certificate you can import it into you local keystore. First of all you have to import a so called Chain Certificate or Root Certificate into your keystore. After that you can proceed with importing your Certificate.

Here is a list of common problems that you may encounter when setting up SSL communications, and what to do about them. Follow all of the directions to download and install JSSE. A likely explanation is that JBoss Web cannot find the keystore file where it is looking. By default, JBoss Web expects the keystore file to be named. L: The name of a locality or city. S: The name of a state or province. C: A two letter country code. The Host Name is the fully qualified domain name of the application server.

Copy the keystorename. Right-click the cacerts file, select Properties, and then deselect the Read-only attribute. Type changeit as the password.