Page History
Creating a certificate signed by a trusted third party
To create a certificate signed by a trusted third party, first follow the steps under #Creating a self signed certificate and then continue with the steps below:
...
- Browse to http://www.instantssl.com
- Click 'Instant SSL' button (top right, under Free SSL), or click 'Free SSL' to test all this first before paying for it.For 'Instant SSL' select on "Code Signing Certificate"
Select your duration (1, 2, or 3 years).
Note Make sure the validity is shorter than the validity you chose when creating the keystore, otherwise you are paying for more that you will get!!!
- Copy the contents of the mykeystore.csr file into the form where it says to copy the CSR to.
- Select OTHER for the software used to generate it.
- Deselect all the checks of step 4 on the web page (newsletters and other stuff).
- Fill in the rest and follow the instructions (corporate details, etc.).
...
- Note all the "parents" of the response certificate in order (from the first parent to the CA root) - you can see them in windows by opening the .crt file (e.g. servoy.crt) and see the certification path (a "tree" with all the "parents").
- Open the certificate in an editor - let's call it target certificate.
- For each parent in the parent's list (taken from the "first" parent up to the CA root)
- add its content into the target certificate's file at the beginning of the file; the content is from "--
...
- BEGIN CERTIFICATE
...
- -" to "-
...
- END CERTIFICATE
...
- --" (new lines are allowed between certificates' content)
- run the command again: keytool -import -alias MyPlugins -keystore mykeystore.ks -trustcacerts -file mykeystore.crt
...
Overview
Content Tools
Activity