我先从真正的签字(有效期为15天,时间越长或更低)获得审判根证书,然后进口到由jdk钥匙tool创建的钥匙店。 所有必要的步骤,即设立领取证书的办事员(不是自签),等等都已签发。
These are the files the keystore contains:
- private key
- a trial root certificate obtained by verisgin
- my own certificate created by a csr and obtained from verising
可悲的是,火ox所交回的数据与关键仓库所装的私人钥匙相对应。
I suspect there is something to do with the CN of the certificate created from csr, probably that piece of data should contain the FQDN of the hosts which runs the application. I m using JBoss 4.x as the app. server and configured server.xml Connector element, the so called configuration is the following:
<Connector port="443" protocol="HTTP/1.1" SSLEnabled="true"
redirectPort="8443"
maxThreads="3000" scheme="https" secure="true"
strategy="ms"
address="${jboss.bind.address}"
keystoreFile="${jboss.server.home.dir}/conf/t2facebook.jks"
keystorePass="TPC.961"
truststoreFile="${jboss.server.home.dir}/conf/t2facebook.jks"
truststorePass="TPC.961"
sslProtocol="TLS"
clientAuth="true"/>
提前感谢!
PS:顺便说一句,从火ox中抽出的错误是:sec_error_ca_cert_invalid