How to create a KeyStore with certificate chain

Steps to create the KeyStore with a certificate chain.

  1. Concatenate the server certificate, the intermediate certificate, and root certificate. If they were provided as separate files by the certificate authority. 

Then the order of these 3 certificates should be :

For Unix use

  cat intermediate.crt root.crt > cert-chain.txt


For windows use notepad to concaenate certificates.

  1. Pack all the certificates and server private key into a pkcs12 file.
    openssl pkcs12 -export -inkey server.key -in cert-chain.txt -out cert-chain.pkcs12

  2. Pack that file into a java keystore by using the below keytool command.
    keytool -importkeystore -srckeystore cert-chain.pkcs12 -srcstoretype PKCS12 -destkeystore SSLKeystore.jks

  3. Use this created keystore(SSLKeystore.jks) in jetty.xml and restart the Adeptia services.

Have more questions? Submit a request


Article is closed for comments.