How to install GoDaddy SSL certificates in Tomcat without CSR?












0














One of our clients purchased wild card SSL certificates (*.example.com)
from GoDaddy and he simply downloaded without giving CSR data. We have 3 files in that zip file. Those are fce4f111a61ea3f4.crt, gd_bundle-g2-g1.crt and gdig2.crt.pem.



I searched so many articles regarding this but everyone is saying first take the CSR data from your server and past it in the GoDaddy for getting SSL certificates.



In my case we didn't provide CSR data to GoDaddy, which means I don't have the keystore file.



Now, I tried to install certificates without keystore to my server. For that I used the below commands with no success:



keytool -import -alias root -keystore tomcat.keystore -trustcacerts -file fce4f111a61ea3f4.crt

keytool -import -alias interm -keystore tomcat.keystore -trustcacerts -file gd_bundle-g2-g1.crt

keytool -import -alias tomcat -keystore tomcat.keystore -trustcacerts -file gdig2.crt.pem









share|improve this question
























  • Looks ok. Your Tomcat does not need any Certificate Signing Request (CSR). This is needed to request the signing from your Certificate Authority (CA) namely GoDaddy in this case. You don't want to send them (or anybody at all) your secret private key, so you send a CSR that contains your public key and request meta data only and get back the newly crafted certificate plus intermediate certificate chain bundle. What's your actual question?
    – Selaron
    Nov 23 '18 at 8:07












  • I installed SSL certificates so many times with other providers and I never send CSR data to third party but it worked for me. This time by using goDaddy certificates is not working I don't know why ?
    – Naresh
    Nov 23 '18 at 11:12










  • It's to hard guess what 'not working' means without a full Exception stack trace or even knowing what the certificate is to be used for.
    – Selaron
    Nov 23 '18 at 11:24
















0














One of our clients purchased wild card SSL certificates (*.example.com)
from GoDaddy and he simply downloaded without giving CSR data. We have 3 files in that zip file. Those are fce4f111a61ea3f4.crt, gd_bundle-g2-g1.crt and gdig2.crt.pem.



I searched so many articles regarding this but everyone is saying first take the CSR data from your server and past it in the GoDaddy for getting SSL certificates.



In my case we didn't provide CSR data to GoDaddy, which means I don't have the keystore file.



Now, I tried to install certificates without keystore to my server. For that I used the below commands with no success:



keytool -import -alias root -keystore tomcat.keystore -trustcacerts -file fce4f111a61ea3f4.crt

keytool -import -alias interm -keystore tomcat.keystore -trustcacerts -file gd_bundle-g2-g1.crt

keytool -import -alias tomcat -keystore tomcat.keystore -trustcacerts -file gdig2.crt.pem









share|improve this question
























  • Looks ok. Your Tomcat does not need any Certificate Signing Request (CSR). This is needed to request the signing from your Certificate Authority (CA) namely GoDaddy in this case. You don't want to send them (or anybody at all) your secret private key, so you send a CSR that contains your public key and request meta data only and get back the newly crafted certificate plus intermediate certificate chain bundle. What's your actual question?
    – Selaron
    Nov 23 '18 at 8:07












  • I installed SSL certificates so many times with other providers and I never send CSR data to third party but it worked for me. This time by using goDaddy certificates is not working I don't know why ?
    – Naresh
    Nov 23 '18 at 11:12










  • It's to hard guess what 'not working' means without a full Exception stack trace or even knowing what the certificate is to be used for.
    – Selaron
    Nov 23 '18 at 11:24














0












0








0







One of our clients purchased wild card SSL certificates (*.example.com)
from GoDaddy and he simply downloaded without giving CSR data. We have 3 files in that zip file. Those are fce4f111a61ea3f4.crt, gd_bundle-g2-g1.crt and gdig2.crt.pem.



I searched so many articles regarding this but everyone is saying first take the CSR data from your server and past it in the GoDaddy for getting SSL certificates.



In my case we didn't provide CSR data to GoDaddy, which means I don't have the keystore file.



Now, I tried to install certificates without keystore to my server. For that I used the below commands with no success:



keytool -import -alias root -keystore tomcat.keystore -trustcacerts -file fce4f111a61ea3f4.crt

keytool -import -alias interm -keystore tomcat.keystore -trustcacerts -file gd_bundle-g2-g1.crt

keytool -import -alias tomcat -keystore tomcat.keystore -trustcacerts -file gdig2.crt.pem









share|improve this question















One of our clients purchased wild card SSL certificates (*.example.com)
from GoDaddy and he simply downloaded without giving CSR data. We have 3 files in that zip file. Those are fce4f111a61ea3f4.crt, gd_bundle-g2-g1.crt and gdig2.crt.pem.



I searched so many articles regarding this but everyone is saying first take the CSR data from your server and past it in the GoDaddy for getting SSL certificates.



In my case we didn't provide CSR data to GoDaddy, which means I don't have the keystore file.



Now, I tried to install certificates without keystore to my server. For that I used the below commands with no success:



keytool -import -alias root -keystore tomcat.keystore -trustcacerts -file fce4f111a61ea3f4.crt

keytool -import -alias interm -keystore tomcat.keystore -trustcacerts -file gd_bundle-g2-g1.crt

keytool -import -alias tomcat -keystore tomcat.keystore -trustcacerts -file gdig2.crt.pem






java ssl tomcat keytool






share|improve this question















share|improve this question













share|improve this question




share|improve this question








edited Nov 23 '18 at 1:24









Mihai Chelaru

2,14291022




2,14291022










asked Nov 23 '18 at 1:01









Naresh

11




11












  • Looks ok. Your Tomcat does not need any Certificate Signing Request (CSR). This is needed to request the signing from your Certificate Authority (CA) namely GoDaddy in this case. You don't want to send them (or anybody at all) your secret private key, so you send a CSR that contains your public key and request meta data only and get back the newly crafted certificate plus intermediate certificate chain bundle. What's your actual question?
    – Selaron
    Nov 23 '18 at 8:07












  • I installed SSL certificates so many times with other providers and I never send CSR data to third party but it worked for me. This time by using goDaddy certificates is not working I don't know why ?
    – Naresh
    Nov 23 '18 at 11:12










  • It's to hard guess what 'not working' means without a full Exception stack trace or even knowing what the certificate is to be used for.
    – Selaron
    Nov 23 '18 at 11:24


















  • Looks ok. Your Tomcat does not need any Certificate Signing Request (CSR). This is needed to request the signing from your Certificate Authority (CA) namely GoDaddy in this case. You don't want to send them (or anybody at all) your secret private key, so you send a CSR that contains your public key and request meta data only and get back the newly crafted certificate plus intermediate certificate chain bundle. What's your actual question?
    – Selaron
    Nov 23 '18 at 8:07












  • I installed SSL certificates so many times with other providers and I never send CSR data to third party but it worked for me. This time by using goDaddy certificates is not working I don't know why ?
    – Naresh
    Nov 23 '18 at 11:12










  • It's to hard guess what 'not working' means without a full Exception stack trace or even knowing what the certificate is to be used for.
    – Selaron
    Nov 23 '18 at 11:24
















Looks ok. Your Tomcat does not need any Certificate Signing Request (CSR). This is needed to request the signing from your Certificate Authority (CA) namely GoDaddy in this case. You don't want to send them (or anybody at all) your secret private key, so you send a CSR that contains your public key and request meta data only and get back the newly crafted certificate plus intermediate certificate chain bundle. What's your actual question?
– Selaron
Nov 23 '18 at 8:07






Looks ok. Your Tomcat does not need any Certificate Signing Request (CSR). This is needed to request the signing from your Certificate Authority (CA) namely GoDaddy in this case. You don't want to send them (or anybody at all) your secret private key, so you send a CSR that contains your public key and request meta data only and get back the newly crafted certificate plus intermediate certificate chain bundle. What's your actual question?
– Selaron
Nov 23 '18 at 8:07














I installed SSL certificates so many times with other providers and I never send CSR data to third party but it worked for me. This time by using goDaddy certificates is not working I don't know why ?
– Naresh
Nov 23 '18 at 11:12




I installed SSL certificates so many times with other providers and I never send CSR data to third party but it worked for me. This time by using goDaddy certificates is not working I don't know why ?
– Naresh
Nov 23 '18 at 11:12












It's to hard guess what 'not working' means without a full Exception stack trace or even knowing what the certificate is to be used for.
– Selaron
Nov 23 '18 at 11:24




It's to hard guess what 'not working' means without a full Exception stack trace or even knowing what the certificate is to be used for.
– Selaron
Nov 23 '18 at 11:24












0






active

oldest

votes











Your Answer






StackExchange.ifUsing("editor", function () {
StackExchange.using("externalEditor", function () {
StackExchange.using("snippets", function () {
StackExchange.snippets.init();
});
});
}, "code-snippets");

StackExchange.ready(function() {
var channelOptions = {
tags: "".split(" "),
id: "1"
};
initTagRenderer("".split(" "), "".split(" "), channelOptions);

StackExchange.using("externalEditor", function() {
// Have to fire editor after snippets, if snippets enabled
if (StackExchange.settings.snippets.snippetsEnabled) {
StackExchange.using("snippets", function() {
createEditor();
});
}
else {
createEditor();
}
});

function createEditor() {
StackExchange.prepareEditor({
heartbeatType: 'answer',
autoActivateHeartbeat: false,
convertImagesToLinks: true,
noModals: true,
showLowRepImageUploadWarning: true,
reputationToPostImages: 10,
bindNavPrevention: true,
postfix: "",
imageUploader: {
brandingHtml: "Powered by u003ca class="icon-imgur-white" href="https://imgur.com/"u003eu003c/au003e",
contentPolicyHtml: "User contributions licensed under u003ca href="https://creativecommons.org/licenses/by-sa/3.0/"u003ecc by-sa 3.0 with attribution requiredu003c/au003e u003ca href="https://stackoverflow.com/legal/content-policy"u003e(content policy)u003c/au003e",
allowUrls: true
},
onDemand: true,
discardSelector: ".discard-answer"
,immediatelyShowMarkdownHelp:true
});


}
});














draft saved

draft discarded


















StackExchange.ready(
function () {
StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2fstackoverflow.com%2fquestions%2f53439545%2fhow-to-install-godaddy-ssl-certificates-in-tomcat-without-csr%23new-answer', 'question_page');
}
);

Post as a guest















Required, but never shown

























0






active

oldest

votes








0






active

oldest

votes









active

oldest

votes






active

oldest

votes
















draft saved

draft discarded




















































Thanks for contributing an answer to Stack Overflow!


  • Please be sure to answer the question. Provide details and share your research!

But avoid



  • Asking for help, clarification, or responding to other answers.

  • Making statements based on opinion; back them up with references or personal experience.


To learn more, see our tips on writing great answers.





Some of your past answers have not been well-received, and you're in danger of being blocked from answering.


Please pay close attention to the following guidance:


  • Please be sure to answer the question. Provide details and share your research!

But avoid



  • Asking for help, clarification, or responding to other answers.

  • Making statements based on opinion; back them up with references or personal experience.


To learn more, see our tips on writing great answers.




draft saved


draft discarded














StackExchange.ready(
function () {
StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2fstackoverflow.com%2fquestions%2f53439545%2fhow-to-install-godaddy-ssl-certificates-in-tomcat-without-csr%23new-answer', 'question_page');
}
);

Post as a guest















Required, but never shown





















































Required, but never shown














Required, but never shown












Required, but never shown







Required, but never shown

































Required, but never shown














Required, but never shown












Required, but never shown







Required, but never shown







Popular posts from this blog

Berounka

Sphinx de Gizeh

Different font size/position of beamer's navigation symbols template's content depending on regular/plain...