How to install GoDaddy SSL certificates in Tomcat without CSR?
One of our clients purchased wild card SSL certificates (*.example.com)
from GoDaddy and he simply downloaded without giving CSR data. We have 3 files in that zip file. Those are fce4f111a61ea3f4.crt
, gd_bundle-g2-g1.crt
and gdig2.crt.pem
.
I searched so many articles regarding this but everyone is saying first take the CSR data from your server and past it in the GoDaddy for getting SSL certificates.
In my case we didn't provide CSR data to GoDaddy, which means I don't have the keystore file.
Now, I tried to install certificates without keystore to my server. For that I used the below commands with no success:
keytool -import -alias root -keystore tomcat.keystore -trustcacerts -file fce4f111a61ea3f4.crt
keytool -import -alias interm -keystore tomcat.keystore -trustcacerts -file gd_bundle-g2-g1.crt
keytool -import -alias tomcat -keystore tomcat.keystore -trustcacerts -file gdig2.crt.pem
java ssl tomcat keytool
add a comment |
One of our clients purchased wild card SSL certificates (*.example.com)
from GoDaddy and he simply downloaded without giving CSR data. We have 3 files in that zip file. Those are fce4f111a61ea3f4.crt
, gd_bundle-g2-g1.crt
and gdig2.crt.pem
.
I searched so many articles regarding this but everyone is saying first take the CSR data from your server and past it in the GoDaddy for getting SSL certificates.
In my case we didn't provide CSR data to GoDaddy, which means I don't have the keystore file.
Now, I tried to install certificates without keystore to my server. For that I used the below commands with no success:
keytool -import -alias root -keystore tomcat.keystore -trustcacerts -file fce4f111a61ea3f4.crt
keytool -import -alias interm -keystore tomcat.keystore -trustcacerts -file gd_bundle-g2-g1.crt
keytool -import -alias tomcat -keystore tomcat.keystore -trustcacerts -file gdig2.crt.pem
java ssl tomcat keytool
Looks ok. Your Tomcat does not need any Certificate Signing Request (CSR). This is needed to request the signing from your Certificate Authority (CA) namely GoDaddy in this case. You don't want to send them (or anybody at all) your secret private key, so you send a CSR that contains your public key and request meta data only and get back the newly crafted certificate plus intermediate certificate chain bundle. What's your actual question?
– Selaron
Nov 23 '18 at 8:07
I installed SSL certificates so many times with other providers and I never send CSR data to third party but it worked for me. This time by using goDaddy certificates is not working I don't know why ?
– Naresh
Nov 23 '18 at 11:12
It's to hard guess what 'not working' means without a full Exception stack trace or even knowing what the certificate is to be used for.
– Selaron
Nov 23 '18 at 11:24
add a comment |
One of our clients purchased wild card SSL certificates (*.example.com)
from GoDaddy and he simply downloaded without giving CSR data. We have 3 files in that zip file. Those are fce4f111a61ea3f4.crt
, gd_bundle-g2-g1.crt
and gdig2.crt.pem
.
I searched so many articles regarding this but everyone is saying first take the CSR data from your server and past it in the GoDaddy for getting SSL certificates.
In my case we didn't provide CSR data to GoDaddy, which means I don't have the keystore file.
Now, I tried to install certificates without keystore to my server. For that I used the below commands with no success:
keytool -import -alias root -keystore tomcat.keystore -trustcacerts -file fce4f111a61ea3f4.crt
keytool -import -alias interm -keystore tomcat.keystore -trustcacerts -file gd_bundle-g2-g1.crt
keytool -import -alias tomcat -keystore tomcat.keystore -trustcacerts -file gdig2.crt.pem
java ssl tomcat keytool
One of our clients purchased wild card SSL certificates (*.example.com)
from GoDaddy and he simply downloaded without giving CSR data. We have 3 files in that zip file. Those are fce4f111a61ea3f4.crt
, gd_bundle-g2-g1.crt
and gdig2.crt.pem
.
I searched so many articles regarding this but everyone is saying first take the CSR data from your server and past it in the GoDaddy for getting SSL certificates.
In my case we didn't provide CSR data to GoDaddy, which means I don't have the keystore file.
Now, I tried to install certificates without keystore to my server. For that I used the below commands with no success:
keytool -import -alias root -keystore tomcat.keystore -trustcacerts -file fce4f111a61ea3f4.crt
keytool -import -alias interm -keystore tomcat.keystore -trustcacerts -file gd_bundle-g2-g1.crt
keytool -import -alias tomcat -keystore tomcat.keystore -trustcacerts -file gdig2.crt.pem
java ssl tomcat keytool
java ssl tomcat keytool
edited Nov 23 '18 at 1:24
Mihai Chelaru
2,14291022
2,14291022
asked Nov 23 '18 at 1:01
Naresh
11
11
Looks ok. Your Tomcat does not need any Certificate Signing Request (CSR). This is needed to request the signing from your Certificate Authority (CA) namely GoDaddy in this case. You don't want to send them (or anybody at all) your secret private key, so you send a CSR that contains your public key and request meta data only and get back the newly crafted certificate plus intermediate certificate chain bundle. What's your actual question?
– Selaron
Nov 23 '18 at 8:07
I installed SSL certificates so many times with other providers and I never send CSR data to third party but it worked for me. This time by using goDaddy certificates is not working I don't know why ?
– Naresh
Nov 23 '18 at 11:12
It's to hard guess what 'not working' means without a full Exception stack trace or even knowing what the certificate is to be used for.
– Selaron
Nov 23 '18 at 11:24
add a comment |
Looks ok. Your Tomcat does not need any Certificate Signing Request (CSR). This is needed to request the signing from your Certificate Authority (CA) namely GoDaddy in this case. You don't want to send them (or anybody at all) your secret private key, so you send a CSR that contains your public key and request meta data only and get back the newly crafted certificate plus intermediate certificate chain bundle. What's your actual question?
– Selaron
Nov 23 '18 at 8:07
I installed SSL certificates so many times with other providers and I never send CSR data to third party but it worked for me. This time by using goDaddy certificates is not working I don't know why ?
– Naresh
Nov 23 '18 at 11:12
It's to hard guess what 'not working' means without a full Exception stack trace or even knowing what the certificate is to be used for.
– Selaron
Nov 23 '18 at 11:24
Looks ok. Your Tomcat does not need any Certificate Signing Request (CSR). This is needed to request the signing from your Certificate Authority (CA) namely GoDaddy in this case. You don't want to send them (or anybody at all) your secret private key, so you send a CSR that contains your public key and request meta data only and get back the newly crafted certificate plus intermediate certificate chain bundle. What's your actual question?
– Selaron
Nov 23 '18 at 8:07
Looks ok. Your Tomcat does not need any Certificate Signing Request (CSR). This is needed to request the signing from your Certificate Authority (CA) namely GoDaddy in this case. You don't want to send them (or anybody at all) your secret private key, so you send a CSR that contains your public key and request meta data only and get back the newly crafted certificate plus intermediate certificate chain bundle. What's your actual question?
– Selaron
Nov 23 '18 at 8:07
I installed SSL certificates so many times with other providers and I never send CSR data to third party but it worked for me. This time by using goDaddy certificates is not working I don't know why ?
– Naresh
Nov 23 '18 at 11:12
I installed SSL certificates so many times with other providers and I never send CSR data to third party but it worked for me. This time by using goDaddy certificates is not working I don't know why ?
– Naresh
Nov 23 '18 at 11:12
It's to hard guess what 'not working' means without a full Exception stack trace or even knowing what the certificate is to be used for.
– Selaron
Nov 23 '18 at 11:24
It's to hard guess what 'not working' means without a full Exception stack trace or even knowing what the certificate is to be used for.
– Selaron
Nov 23 '18 at 11:24
add a comment |
0
active
oldest
votes
Your Answer
StackExchange.ifUsing("editor", function () {
StackExchange.using("externalEditor", function () {
StackExchange.using("snippets", function () {
StackExchange.snippets.init();
});
});
}, "code-snippets");
StackExchange.ready(function() {
var channelOptions = {
tags: "".split(" "),
id: "1"
};
initTagRenderer("".split(" "), "".split(" "), channelOptions);
StackExchange.using("externalEditor", function() {
// Have to fire editor after snippets, if snippets enabled
if (StackExchange.settings.snippets.snippetsEnabled) {
StackExchange.using("snippets", function() {
createEditor();
});
}
else {
createEditor();
}
});
function createEditor() {
StackExchange.prepareEditor({
heartbeatType: 'answer',
autoActivateHeartbeat: false,
convertImagesToLinks: true,
noModals: true,
showLowRepImageUploadWarning: true,
reputationToPostImages: 10,
bindNavPrevention: true,
postfix: "",
imageUploader: {
brandingHtml: "Powered by u003ca class="icon-imgur-white" href="https://imgur.com/"u003eu003c/au003e",
contentPolicyHtml: "User contributions licensed under u003ca href="https://creativecommons.org/licenses/by-sa/3.0/"u003ecc by-sa 3.0 with attribution requiredu003c/au003e u003ca href="https://stackoverflow.com/legal/content-policy"u003e(content policy)u003c/au003e",
allowUrls: true
},
onDemand: true,
discardSelector: ".discard-answer"
,immediatelyShowMarkdownHelp:true
});
}
});
Sign up or log in
StackExchange.ready(function () {
StackExchange.helpers.onClickDraftSave('#login-link');
});
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
StackExchange.ready(
function () {
StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2fstackoverflow.com%2fquestions%2f53439545%2fhow-to-install-godaddy-ssl-certificates-in-tomcat-without-csr%23new-answer', 'question_page');
}
);
Post as a guest
Required, but never shown
0
active
oldest
votes
0
active
oldest
votes
active
oldest
votes
active
oldest
votes
Thanks for contributing an answer to Stack Overflow!
- Please be sure to answer the question. Provide details and share your research!
But avoid …
- Asking for help, clarification, or responding to other answers.
- Making statements based on opinion; back them up with references or personal experience.
To learn more, see our tips on writing great answers.
Some of your past answers have not been well-received, and you're in danger of being blocked from answering.
Please pay close attention to the following guidance:
- Please be sure to answer the question. Provide details and share your research!
But avoid …
- Asking for help, clarification, or responding to other answers.
- Making statements based on opinion; back them up with references or personal experience.
To learn more, see our tips on writing great answers.
Sign up or log in
StackExchange.ready(function () {
StackExchange.helpers.onClickDraftSave('#login-link');
});
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
StackExchange.ready(
function () {
StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2fstackoverflow.com%2fquestions%2f53439545%2fhow-to-install-godaddy-ssl-certificates-in-tomcat-without-csr%23new-answer', 'question_page');
}
);
Post as a guest
Required, but never shown
Sign up or log in
StackExchange.ready(function () {
StackExchange.helpers.onClickDraftSave('#login-link');
});
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
Sign up or log in
StackExchange.ready(function () {
StackExchange.helpers.onClickDraftSave('#login-link');
});
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
Sign up or log in
StackExchange.ready(function () {
StackExchange.helpers.onClickDraftSave('#login-link');
});
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Looks ok. Your Tomcat does not need any Certificate Signing Request (CSR). This is needed to request the signing from your Certificate Authority (CA) namely GoDaddy in this case. You don't want to send them (or anybody at all) your secret private key, so you send a CSR that contains your public key and request meta data only and get back the newly crafted certificate plus intermediate certificate chain bundle. What's your actual question?
– Selaron
Nov 23 '18 at 8:07
I installed SSL certificates so many times with other providers and I never send CSR data to third party but it worked for me. This time by using goDaddy certificates is not working I don't know why ?
– Naresh
Nov 23 '18 at 11:12
It's to hard guess what 'not working' means without a full Exception stack trace or even knowing what the certificate is to be used for.
– Selaron
Nov 23 '18 at 11:24