我生成文件的命令如下:
openssl genrsa -out ca-key.pem 1024openssl req -new -out ca-req.csr -key ca-key.pemopenssl x509 -req -in ca-req.csr -out ca-cert.pem -signkey ca-key.pem -days 365keytool -genkey -dname "cn=192.168.0.1, ou=GM, o=KD, l=CZ, st=GD, c=CN" -storepass changeit -keystore server_keystore -keyalg RSA -keypass changeitkeytool -certreq -sigalg MD5withRSA -file server.csr -keypass changeit -keystore server_keystore -storepass changeitopenssl x509 -req -in server.csr -out server-cert.pem -CA ca-cert.pem -CAkey ca-key.pem -days 365keytool -import -v -trustcacerts -storepass changeit -file ca-cert.pem -keystore %JAVA_HOME%\jre\lib\security\cacertskeytool -export -file ca-cert.pem -storepass changeit -keystore server_keystorekeytool -import -file ca-cert.pem -storepass changeit -keystore client_truststore -nopromptkeytool -genkey -dname "cn=192.168.0.1, ou=GM, o=KD, l=CZ, st=GD, c=CN" -storepass changeit -keystore client_keystore -keyalg RSA -keypass changeitkeytool -export -file ca-cert.pem -storepass changeit -keystore client_keystorekeytool -import -file ca-cert.pem -storepass changeit -keystore server_truststore -nopromptopenssl genrsa -out client-key.pem 1024openssl req -new -out client-req.csr -key client-key.pemopenssl x509 -req -in client-req.csr -out client.crt -signkey client-key.pem -CA ca-cert.pem -CAkey ca-key.pem -CAcreateserial -days 365openssl pkcs12 -export -clcerts -in client.crt -inkey client-key.pem -out client.p12
openssl genrsa -out ca-key.pem 1024openssl req -new -out ca-req.csr -key ca-key.pemopenssl x509 -req -in ca-req.csr -out ca-cert.pem -signkey ca-key.pem -days 365keytool -genkey -dname "cn=192.168.0.1, ou=GM, o=KD, l=CZ, st=GD, c=CN" -storepass changeit -keystore server_keystore -keyalg RSA -keypass changeitkeytool -certreq -sigalg MD5withRSA -file server.csr -keypass changeit -keystore server_keystore -storepass changeitopenssl x509 -req -in server.csr -out server-cert.pem -CA ca-cert.pem -CAkey ca-key.pem -days 365keytool -import -v -trustcacerts -storepass changeit -file ca-cert.pem -keystore %JAVA_HOME%\jre\lib\security\cacertskeytool -export -file ca-cert.pem -storepass changeit -keystore server_keystorekeytool -import -file ca-cert.pem -storepass changeit -keystore client_truststore -nopromptkeytool -genkey -dname "cn=192.168.0.1, ou=GM, o=KD, l=CZ, st=GD, c=CN" -storepass changeit -keystore client_keystore -keyalg RSA -keypass changeitkeytool -export -file ca-cert.pem -storepass changeit -keystore client_keystorekeytool -import -file ca-cert.pem -storepass changeit -keystore server_truststore -nopromptopenssl genrsa -out client-key.pem 1024openssl req -new -out client-req.csr -key client-key.pemopenssl x509 -req -in client-req.csr -out client.crt -signkey client-key.pem -CA ca-cert.pem -CAkey ca-key.pem -CAcreateserial -days 365openssl pkcs12 -export -clcerts -in client.crt -inkey client-key.pem -out client.p12
解决方案 »
- 请高手帮忙!如何使用java程序将txt文件打包成jar文件
- 关于ByteArrayOutputStream流转换数据的问题
- hibernate映射文件找不到Could not read mappings from resource:com/huihuijuan/test/model/dao/pojo/Userinfo.hbm.xml
- hibernate连接数据库问题
- 请问eclipse juno如何使用hibernate tool方向工程(hibernate tool已经安装)
- 在JSP中能否将数据象.net中DataList那样显示?
- 高分求教:关于JSP中include的一个问题,如何传递JSP变量???
- ACCESS的临时磁盘空间不足,引起整个IIS死掉...如何处理?
- 如何配置tomcat使它支持控件下载?
- struts中tiles烦死我啦,怎么办?
- ibatis 问题
- 大见看看见过这个异常吗
采用这样的路径试试,另外truststorefile和keystoreFile最好都设置到文件而不是目录!
查参数属性
to yetaodiao:你什么意思,能否说详细点?不明白